Honor user CA store when targeting Android Nougat SDK and later (#420)

* Included network-security-config.xml file to honor user added CAs (see:
https://android-developers.googleblog.com/2016/07/changes-to-trusted-certificate.html)

* Added domain-config entry to only use system CAs connecting to bitwarden.com

* Deny all plaintext traffic from network_security_config


Ref: https://developer.android.com/training/articles/security-config#CleartextTrafficPermitted

src/Android/Resources/xml/network_security_config.xml

@@ -0,0 +1,18 @@
+<network-security-config>
+  <base-config cleartextTrafficPermitted="false">
+    <trust-anchors>
+      <!-- Trust pre-installed CAs -->
+      <certificates src="system" />
+      <!-- Additionally trust user added CAs -->
+      <certificates src="user" />
+    </trust-anchors>
+  </base-config>
+  <domain-config cleartextTrafficPermitted="false">
+    <domain includeSubdomains="true">bitwarden.com</domain>
+    <trust-anchors>
+      <!-- Only trust pre-installed CAs for
+           Bitwarden.com and all subdomains -->
+      <certificates src="system" />
+    </trust-anchors>
+  </domain-config>
+</network-security-config>