Update ADMIN_TOKEN description in docs

Blurb taken from etc/keystone.conf.sample

partially fixes: bug #1283943

Change-Id: If7dac1dd902b52618f1af50a971fe1602426fdcf

doc/source/configuringservices.rst

@@ -52,9 +52,10 @@ keystone project, the line defining this token is::
     [DEFAULT]
     admin_token = ADMIN
 
-This configured token is a "shared secret" between keystone and other
-openstack services, and is used by the client to communicate with the API to
-create tenants, users, roles, etc.
+A "shared secret" that can be used to bootstrap Keystone. This token does not
+represent a user, and carries no explicit authorization.
+To disable in production (highly recommended), remove AdminTokenAuthMiddleware
+from your paste application pipelines (for example, in keystone-paste.ini)
 
 Setting up tenants, users, and roles
 ------------------------------------