Exclude agent pod from admission controller library injection

[fanny-jiang]

What this PR does / why we need it:

Exclude the agent pod from library injection (receiving new environment variables) when the admission controller is enabled. The agent doesn't send traces and it can be configured to send dogstatsd metrics so it is unnecessary to perform library injection on the agent pod.

This change will also prevent daemonset/agent pod creation problems in GKE Autopilot, which does not allow privileged pod to be mutated.

Which issue this PR fixes

(optional, in fixes #<issue number>(, fixes #<issue_number>, ...) format, will close that issue when PR gets merged)

• fixes #

Special notes for your reviewer:

Checklist

[Place an '[x]' (no spaces) in all applicable fields. Please remove unrelated fields.]

• Chart Version bumped
• Documentation has been updated with helm-docs (run: .github/helm-docs.sh)
• CHANGELOG.md has been updated
• Variables are documented in the README.md
• For Datadog Operator chart or value changes update the test baselines (run: make update-test-baselines)

[clamoriniere]

that was quick 👏
thanks @fanny-jiang

[clamoriniere]

@fanny-jiang the CI job seems to fail on the Daemonset labels

https://github.com/DataDog/helm-charts/actions/runs/7744232710/job/21119084815?pr=1309#step:5:48

[clamoriniere]

I forgot about the boolean value issue on yaml

[liliyadd]

Did we add the label in the right place? For the label to be applied to the pods managed by the deployments/daemonset, it needs to be under spec.template.metadata.labels. Setting the label under metadata.labels only applies it to the deployment/daemonset itself.

[liliyadd]

I have created this PR that should set the label on pods.