[operator] Installation fails on AKS with default Azure Policy for K8s

[rsirny]

Opentelemetry operator installation via Helm chart fails on Azure Kubernetes Service cluster, which has enabled default Azure Policies, with the following message:

admission webhook "validation.gatekeeper.sh" denied the request: 
     [azurepolicy-k8sazurev3noprivilegeescalatio-...] Privilege escalation container is not allowed: kube-rbac-proxy
     [azurepolicy-k8sazurev3noprivilegeescalatio-...] Privilege escalation container is not allowed: manager

The above message is due to Azure Policy "Kubernetes cluster should not allow privileged containers]" violation. The root cause is that container security context property allowPrivilegeEscalation is not explicitly set to false and there is no way to set container security context via values overrides. There is a similar issue reported for autoinstrumentation

I was able to start the pods by manually editing operator deployment and setting container security context allowPrivilegeEscalation to false. It would be great if Helm values allowed to set the container security context (e.g. containerSecurityContext).

Kubernetes server version: v1.25.5