As of now the SS-CSI secrets are mounted with root:root

There is an issue open on upstream: https://github.com/kubernetes-sigs/secrets-store-csi-driver/issues/858

Analyze and come up with a solution for it because addressing this issue is important to run workloads with reduced privileges while keeping the secrets files not world (i.e., others) readable.

Acceptance criterion:

Working solution proposal and draft PR with working e2e test submitted upstream.