Apply TLS profile settings to the visibility apiserver via SecureServing options.

File to modify:

• pkg/visibility/server.go

Implementation approach:
The visibility server uses k8s.io/apiserver SecureServing options. TLS configuration can be applied via:

o.SecureServing.MinTLSVersion = tlsVersionFromConfig(cfg.MinTLSVersion)
o.SecureServing.CipherSuites = cipherSuitesFromConfig(cfg.CipherSuites)

Note: The visibility server may need TLS settings passed from the main configuration. Consider adding a Visibility section to the Configuration API or reusing the Webhook TLS settings.

Acceptance Criteria:

• Visibility server respects minTLSVersion from configuration
• Visibility server respects cipherSuites from configuration
• Defaults to Intermediate profile when not specified
• TLS scanner confirms correct settings on visibility API endpoints

Depends on: OCPKUEUE-451 (API fields)