Root-Rotation: Documentation update

[nayak-prajna]

This document is updated as part of the main Ticket:
https://hashicorp.atlassian.net/browse/VAULT-42182

Description:
Added new section at api-docs/auth/ldap.mdx for root rotation.

Changes:
Document before update:

Document after update (Root Rotation section is added before the List LDAP Group):

[hashicorp-cla-app]

All committers have signed the CLA.

[hashicorp-cla-app]

Thank you for your submission! We require that all contributors sign our Contributor License Agreement ("CLA") before we can accept the contribution. Read and sign the agreement

Learn more about why HashiCorp requires a CLA and what the CLA includes

_{Have you signed the CLA already but the status is still pending? Recheck it.}

[github-actions]

Vercel Previews Deployed

Name	Status	Preview	Updated (UTC)
Dev Portal	✅ Ready (Inspect)	Visit Preview	Tue Mar 3 06:13:14 UTC 2026
Unified Docs API	✅ Ready (Inspect)	Visit Preview	Tue Mar 3 06:09:05 UTC 2026

[github-actions]

Broken Link Checker

No broken links found! 🎉

[stuti-sr]

Links provided in PR description doesn't work.
enable CLA.
Can you share test screen shot here post changes?

[schavis]

Minimal changes for style corrections. Let me know when you're ready for another look.

[schavis]

Suggested change

	This generated password will only be known to Vault and will not be retrievable once rotated.
	The root password becomes irretrievable and only known to Vault once you rotate it.

Style correction: write in active voice, avoid "this" as a pronoun

[schavis]

Suggested change

	$ curl \
	--header "X-Vault-Token: ..." \
	--request POST \
	http://127.0.0.1:8200/v1/auth/ldap/rotate-root
	$ curl \
	--request POST \
	--header "X-Vault-Token: ${VAULT_TOKEN}" \
	${VAULT_ADDR}/v1/auth/ldap/rotate-root

We're slowly moving example code over to using standard env variables to reduce how much folks need to edit the example before running it.