Currently the velero service account permissions are granted `*` on verbs/resources/groups to basically give it cluster-admin. This is too permissive as it accidentally grants the service account `use` verb on all SCCs which causes restic to be assigned to the wrong SCC in environments where customers have a custom SCCs.

We want to restrict this permission set down to only grant the relevant verbs on these resources, not `use`.

For QE verification, `oc get clusterroles <oadp-operator installed cluster role for velero> -o yaml` and verify we no longer see:

```

            - apiGroups:
                - '*'
              resources:
                - '*'
              verbs:
                - '*'
```