Add instructions to RELEASE.md

Signed-off-by: Pedro Kaj Kjellerup Nacht <[email protected]>

Author: pnacht

RELEASE.md

@@ -116,10 +116,11 @@ $ sha256sum slsa-verifier-linux-amd64
 $ sed -i "s/v1.0.0/v1.1.1/g" ./README.md
 ```
 
-4. Send a pull request with the changes. In the description, explain the steps to verify the hash update, i.e., reviewers shoud LGTM only if the provenance verification succeeds
-and the hash in the pull request matches the one computed on the binary. You can use [#slsa-framework/slsa-github-generator#113](https://github.com/slsa-framework/slsa-github-generator/pull/113) as example.
+4. Send a pull request with the changes. In the description:
+   - add the string `#label:release vX.Y.Z` on its own line;
+   - explain the steps to verify the hash update, i.e., reviewers shoud LGTM only if the provenance verification succeeds and the hash in the pull request matches the one computed on the binary. You can use [#slsa-framework/slsa-github-generator#113](https://github.com/slsa-framework/slsa-github-generator/pull/113) as an example.
 
-5. Replace all version / commit references to the slsa-verifier repo with references to the newly released version [e2e.installer-action.yml](https://github.com/slsa-framework/example-package/blob/main/.github/workflows/e2e.installer-action.yml). Each reference has the comment `# UPDATE ON RELEASE`.
+5. Update all version / commit references to the `slsa-verifier` repo in [`example-package`'s e2e.installer-action.yml](https://github.com/slsa-framework/example-package/blob/main/.github/workflows/e2e.installer-action.yml). Each reference has the comment `# UPDATE ON RELEASE`.
 
 ## Update builders