fix: populate _pico_privilege with admin's privileges for consistency with pico_service
refactor: cleanup ACL related bootstrap entries code
fix: handling of builtin entities when applying snapshot