Overview:
Currently the policy wizard hides scope and exclusion sections when the event source is NODE_EVENT. Once backend support lands (ROX-31891), the UI needs to enable these sections so users can scope Node event policies to specific clusters/nodes and add exclusions to filter out legitimate activity.

Implementation Details:
Remove or conditionalize the logic in PolicyBehaviorForm.tsx that disables scopes and exclusions for NODE_EVENT source. Ensure the scope components work correctly in the node context (clusters, nodes vs deployments/namespaces).

Acceptance Criteria:

• Scope section is visible and functional for Node event policies
• Exclusion section is visible and functional for Node event policies
• Users can scope to specific clusters
• Users can add exclusions to filter legitimate node-level file activity

Files to Update:
1. apps/platform/src/Containers/Policies/Wizard/Step2/PolicyBehaviorForm.tsx - conditional rendering logic
2. Scope/exclusion components (may need node-specific adjustments)

Blocked by:

• ROX-31891 - Support scopes and exclusions for Node events (backend)