Default whitelisting of exempt images may be incomplete, depending on the version of Kubernetes you are deploying to

## Issue Default whitelisting of exempt images may be incomplete, depending on the version of Kubernetes you are deploying to. You may need to add `gcr.io/google-containers/` and `k8s.io/` to the default whitelist. ## Issue Error messaging sometimes lacks detail when policies are updated. If you encounter an error when you update a policy, check the names of any attestor resources defined to make sure they are correct. ## Issue When editing a policy in the UI, you cannot remove/edit existing cluster specific deployment rules. This is possible using `gcloud` commands and the REST API. ## Issue In the UI, you cannot manage the IAM Policy on an Attestor or Binary Authorization Policy. Project level IAM permissions work as expected. ## Issue In the UI, detailed error messages are not shown for invalid whitelist patterns on a Policy or invalid PGP keys on an Attestor.