feat: Review firebase rule to make sure it aligns with API's password rules

[cka-y]

Summary:

Update Firebase password policy to reflect the API's policy: https://cloud.google.com/identity-platform/docs/password-policy
Extracted from #141

Closes #188

Expected behavior:
The firebase password policy should be the same as the web app password policy

Testing tips:

• Reset your password
• The criteria to save your new password should be the same as the one from the app (i.e. Password must contain at least one uppercase letter, one lowercase letter, one digit, one special char(!@#$%^&*) and be at least 12 chars long)

Note: special char in Firebase include ^ $ * . [ ] { } ( ) ? " ! @ # % & / \ , > < ' : ; | _ ~ ` which is more characters than we allow in our app -- Introduced Fix: Allow more special char within our app

Please make sure these boxes are checked before submitting your pull request - thanks!

• Run the unit tests with ./scripts/api-tests.sh to make sure you didn't break anything
• Format the title like "feat: [new feature short description]". Title must follow the Conventional Commit Specification(https://www.conventionalcommits.org/en/v1.0.0/).
• Linked all relevant issues
• Include screenshot(s) showing how this pull request works and fixes the issue(s)

[github-actions]

Preview Firebase Hosting URL: https://mobility-feeds-dev--pr-191-gz6twrrn.web.app

[davidgamez]

LGTM!