These are the situations when node labels play a crucial role. They are important enough that Kuberenetes advises adding well-known labels to your nodes
Most pods and containers don’t require privileged access to your Kubernetes nodes. Allowing this setting leaves you at risk for potential exploitation.
How to run containers with unnecessary privileges by creating elevated permissions for your team, run containers to help safeguard your Kubernetes cluster