Allow tcpdump sys_admin cap (#69969)

In the continuing quest to capture packets during network
disruption, tcpdump is being used. In order for tcpdump
to run, even as root, it switches users (even when -Z root)
and OCP detects this as a privilege increase and prohibits it.
Allow SETUID/SETGID, allowing this "change".

Author: jupierce

clusters/build-clusters/common_except_app.ci/restricted-v2-plus-netadmin.yaml

@@ -10,6 +10,8 @@ allowedCapabilities:
 - NET_BIND_SERVICE
 - NET_RAW
 - NET_ADMIN
+- SETUID
+- SETGID
 apiVersion: security.openshift.io/v1
 fsGroup:
   type: MustRunAs