Cross-guild privilege escalation via mass assignment on resource create

The tag and category create endpoints spread `req.body` after the guild relation in Prisma input. A body containing `guild.connect.id` overrides the trusted scope, letting an admin of guild A create resources owned by guild B.

The tag and category create endpoints spread req.body after the trusted guild relation in the Prisma input, so a body containing guild.connect.id overwrote the scope and let an admin of guild A persist resources owned by guild B.