RHOCP support for HSTS and CSP headers for OCP console

1. Proposed title of this feature request

          Increase Openshift Webconsole security with CSP and HSTS headers
       2. What is the nature and description of the request?

          In order to mitigate certain attack vectors Openshfit Webconsole should have Content Security Policy and HTTP Strict-Transport-Security headers.

        3. Why does the customer need this? (List the business requirements here)

           We should clear internal security policies

         4. List any affected packages or components

            Openshift Container Platform