Update trigger-publish GHA (#4599)

<!-- Describe what has changed in this PR -->
**What changed?**
Update trigger-publish GHA token management via GitHub App.
Following the
https://docs.github.com/en/apps/creating-github-apps/authenticating-with-a-github-app/making-authenticated-api-requests-with-a-github-app-in-a-github-actions-workflow

<!-- Tell your future self why have you made these changes -->
**Why?**
Switching to org-level management

<!-- How have you verified this change? Tested locally? Added a unit
test? Checked in staging env? -->
**How did you test it?**
CI

<!-- Assuming the worst case, what can be broken when deploying this
change to production? -->
**Potential risks**


<!-- Is this PR a hotfix candidate or require that a notification be
sent to the broader community? (Yes/No) -->
**Is hotfix candidate?**

.github/workflows/trigger-publish.yml

@@ -20,10 +20,17 @@ jobs:
         id: get_branch
         run: |
           echo "::set-output name=branch::${GITHUB_REF#refs/heads/}"
+      
+      - name: Generate a token
+        id: generate_token
+        uses: tibdex/github-app-token@b62528385c34dbc9f38e5f4225ac829252d1ea92
+        with:
+          app_id: ${{ secrets.TEMPORAL_CICD_APP_ID }}
+          private_key: ${{ secrets.TEMPORAL_CICD_PRIVATE_KEY }}
 
       - name: Dispatch docker builds Github Action
         env:
-          PAT: ${{ secrets.COMMANDER_DATA_TOKEN }}
+          PAT: ${{ steps.generate_token.outputs.token }}
           PARENT_REPO: temporalio/docker-builds
           PARENT_BRANCH: ${{ toJSON('main') }}
           WORKFLOW_ID: update-submodules.yml