feat(core): add methods to SecretValue and aws-secretsmanager Secret to obtain a literal (unresolved by CloudFormation) dynamic reference key (#34397) (#35105)

### Issue # (if applicable)

Closes #34397 

### Reason for this change

[Dynamic references](https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_reference-secret.html) allow an AWS Secrets Manager Secret to be retrieved for use in another AWS CloudFormation resource. Currently the key strings for dynamic references must be created using string manipulation, eg

```ts
const passwordKey = `${mySecret.secretArn}:SecretString:password`;
```

### Description of changes

The existing static [secretsManager](https://github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/core/lib/secret-value.ts#L98C17-L98C31) function in `aws-cdk-lib/core` includes code to generate a dynamic reference key string. This code was therefore extracted into a new static `cfnDynamicReferenceKey` function to make it available outside the `secretsManager` function. Using this new static function the above code example becomes

```ts
const passwordKey = SecretValue.cfnDynamicReferenceKey(mySecret.secretArn, { jsonField: 'password' });
```

A new instance method `cfnDynamicReferenceKey` was also created in the [Secret](https://github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/aws-secretsmanager/lib/secret.ts#L499) class in `aws-cdk-lib/aws-secretsmanager`, which calls the new static `cfnDynamicReferenceKey` function for the secret that it represents. Using this new instance method the above example becomes

```ts
const passwordKey = mySecret.cfnDynamicReferenceKey({ jsonField: 'password' });
```

### Description of how you validated changes

Unit tests and an integration test.

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Author: jdebuseamazon

packages/@aws-cdk-testing/framework-integ/test/aws-secretsmanager/test/integ.secret.dynamic-reference-key.js.snapshot/cdk-integ-secrets-dynamic-reference-key.assets.json

@@ -0,0 +1,73 @@
+{
+ "Resources": {
+  "SecretA720EF05": {
+   "Type": "AWS::SecretsManager::Secret",
+   "Properties": {
+    "GenerateSecretString": {}
+   },
+   "UpdateReplacePolicy": "Delete",
+   "DeletionPolicy": "Delete"
+  },
+  "JSONSecret6FE68AEF": {
+   "Type": "AWS::SecretsManager::Secret",
+   "Properties": {
+    "SecretString": {
+     "Fn::Join": [
+      "",
+      [
+       "{\"cfnDynamicReferenceKeyWithDefaults\":\"",
+       {
+        "Ref": "SecretA720EF05"
+       },
+       ":SecretString:::\",\"cfnDynamicReferenceKeyWithJsonFieldAndVersionStage\":\"",
+       {
+        "Ref": "SecretA720EF05"
+       },
+       ":SecretString:json-key:version-stage:\",\"cfnDynamicReferenceKeyWithJsonFieldAndVersionId\":\"",
+       {
+        "Ref": "SecretA720EF05"
+       },
+       ":SecretString:json-key::version-id\"}"
+      ]
+     ]
+    }
+   },
+   "UpdateReplacePolicy": "Delete",
+   "DeletionPolicy": "Delete"
+  }
+ },
+ "Parameters": {
+  "BootstrapVersion": {
+   "Type": "AWS::SSM::Parameter::Value<String>",
+   "Default": "/cdk-bootstrap/hnb659fds/version",
+   "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
+  }
+ },
+ "Rules": {
+  "CheckBootstrapVersion": {
+   "Assertions": [
+    {
+     "Assert": {
+      "Fn::Not": [
+       {
+        "Fn::Contains": [
+         [
+          "1",
+          "2",
+          "3",
+          "4",
+          "5"
+         ],
+         {
+          "Ref": "BootstrapVersion"
+         }
+        ]
+       }
+      ]
+     },
+     "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
+    }
+   ]
+  }
+ }
+}