admission-controller should have access to get replicationcontrollers

[stanistan]

What this PR does / why we need it:

When running in an openshift cluster, you can use a DeploymentConfig to configure your application, this will create a ReplicationController instead of a ReplicaSet:

https://docs.redhat.com/en/documentation/openshift_container_platform/4.3/html/applications/deployments#what-deployments-are

We don't support this specific kind of resource in our permissions so a user can get this error in the tagsFromLabels mutating webhook (depending on the owner of the pod).

ERROR | (pkg/clusteragent/admission/mutate/tagsfromlabels/mutator.go:93 in MutatePod) | replicationcontrollers "XXXXXX" is forbidden: User "system:serviceaccount:datadog:datadog-agent-cluster-agent" cannot get resource "replicationcontrollers" in API group "" in the namespace "XXXXXXX"

Checklist

[Place an '[x]' (no spaces) in all applicable fields. Please remove unrelated fields.]

• Chart Version semver bump label added (use <chartName>/minor-version, <chartName>/patch-version, or <chartName>/no-version-bump)
• For datadog or datadog-operator chart or value changes, update the test baselines (run: make update-test-baselines)

GitHub CI takes care of the below, but are still required:

• Documentation has been updated with helm-docs (run: .github/helm-docs.sh)
• CHANGELOG.md has been updated
• Variables are documented in the README.md

[stanistan]

@fanny-jiang Updated the PR

[hmahmood]

For NPM owned files