feat(cli): change set review on deploy

[orien]

Implementation of #801 and RFC 370: CLI deploy with change set review confirmation.

This feature enhances the existing --require-approval=any-change option to show all stack changes (not just security changes) and integrates CloudFormation change set creation and review to provide users with an accurate preview of what will be applied before deployment execution.

Modern cloud infrastructure contains critical stateful resources—databases, persistent storage, message queues, and other systems that hold valuable data and maintain complex state. Engineers deploying changes to these environments carry significant responsibility: a single misunderstood deployment can lead to data loss, service outages, or security vulnerabilities that affect customers and business operations. While Infrastructure as Code provides repeatability and version control, it doesn't eliminate the fundamental need for engineers to understand precisely what changes will be applied before execution. Tooling must bridge this gap by providing clear, accurate previews of deployment impact—especially for stateful resources where "undo" isn't always possible. This enhancement ensures that engineers have the complete information they need to make informed decisions about infrastructure changes.

---

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

[orien]

Support deploying/executing an existing CloudFormation change set.

[codecov-commenter]

Codecov Report

❌ Patch coverage is 86.00000% with 14 lines in your changes missing coverage. Please review.
✅ Project coverage is 84.14%. Comparing base (09c0061) to head (a4bedea).
⚠️ Report is 5 commits behind head on main.

Files with missing lines	Patch %	Lines
packages/aws-cdk/lib/cli/cdk-toolkit.ts	86.00%	14 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #892      +/-   ##
==========================================
+ Coverage   83.69%   84.14%   +0.45%     
==========================================
  Files          65       65              
  Lines        9558     9634      +76     
  Branches     1135     1161      +26     
==========================================
+ Hits         8000     8107     +107     
+ Misses       1535     1501      -34     
- Partials       23       26       +3     

Flag	Coverage Δ
suite.unit	84.14% <86.00%> (+0.45%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.