Document how to grant access to individual columns

```sql
GRANT SELECT(
  id, last_login, is_superuser, username, first_name, last_name, email, is_staff, is_active, date_joined
) ON auth_user TO "my-read-only-role";
```
This is a useful pattern for allowing joins against the users table without exposing password hashes.