Description of problem:

Some requirements were detected during the  globalPullSecret feature implementation, collected here:

• Investigate to have ephemeral DS to save some resources in DataPlane side (Maybe switching to jobBatch).
• Small nits in documentation rendered.
• For security reasons better to mount a volume with the original HCCO and global pullSecrets
• Try to avoid give permissions to the DS to access API
• Remove privileged true and reduce the permissions needed
• Rosa-HCP - in the current implementation, if there is conflicting registry entries, the user entries will take precedence. This would allow the user to potentially override pull secrets set by OCM. The prevent this, the precedence needs to be changed so that on conflict the existing entries take precedence.