GH-48326: [CI] Stop specifying hash for actions/* GitHub Actions

[kou]

Rationale for this change

Dependabot sometimes failed to update hash.
For example: #48301

The ASF GitHub Actions policy doesn't requiring pinning actions/* actions:

https://infra.apache.org/github-actions-policy.html

External actions

You MAY use all actions internal to the apache/*, github/* and actions/* namespaces without restrictions.

You MUST pin all external actions to the specific git hash (SHA1) of the action that has been reviewed for use by the project. For instance, you MUST pin foobar/baz-action@8843d7f92416211de9ebb963ff4ce28125932878.

We can avoid the Dependabot behavior by removing hash from actions/* actions.

What changes are included in this PR?

• Remove hash from actions/* actions.
• Use @vX instead of @vX.Y.Z to reduce Dependabot updates.

Are these changes tested?

Yes.

Are there any user-facing changes?

No.

• GitHub Issue: [CI] Stop specifying hash for actions/* GitHub Actions #48326

[github-actions]

⚠️ GitHub issue #48326 has been automatically assigned in GitHub to PR creator.

[conbench-apache-arrow]

After merging your PR, Conbench analyzed the 3 benchmarking runs that have been run so far on merge-commit f7159f2.

There were no benchmark performance regressions. 🎉

The full Conbench report has more details. It also includes information about 9 possible false positives for unstable benchmarks that are known to sometimes produce them.