ROX-20542: disable http/2 in operator kube-rbac-proxy to mitigate CVE-2023-44487

[vladbologa]

Description

Because the operator is now installed with a Helm chart, ACS CS will not pick up this change from the next ACS releases, so I'll do it manually (for now). The reasoning for the change is documented here

I'm also switching to the downstream kube-rbac-proxy image, because we're currently using downstream ACS images.

Checklist (Definition of Done)

• Unit and integration tests added
• Added test description under Test manual
• Documentation added if necessary (i.e. changes to dev setup, test execution, ...)
• CI and all relevant tests are passing
• Add the ticket number to the PR title if available, i.e. ROX-12345: ...
• Discussed security and business related topics privately. Will move any security and business related topics that arise to private communication channel.
• Add secret to app-interface Vault or Secrets Manager if necessary
• RDS changes were e2e tested manually
• Check AWS limits are reasonable for changes provisioning new resources

Test manual

I verified that the image supports the new --http2-disable flag by running:
docker run --rm registry.redhat.io/openshift4/ose-kube-rbac-proxy:v4.13 --http2-disable

# To run tests locally run:
make db/teardown db/setup db/migrate
make ocm/setup OCM_OFFLINE_TOKEN=<ocm-offline-token> OCM_ENV=development
make verify lint binary test test/integration

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: kurlov, vladbologa

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [kurlov,vladbologa]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment