[Feature] Support tolerations when deploying Image Cleaner (Eraser)

[amsoedal]

Is your feature request related to a problem? Please describe. I love having Image Cleaner enabled on our clusters as it prevents vulnerable images from building up. One issue that I'm running into is that I have to manually edit the deployment to be able to add in tolerations. Sometimes (possibly after node reboots, not exactly sure how to repro) the deployment resets and my tolerations are gone. I discover weeks later that the eraser pods have been unable to be scheduled:

Describe the solution you'd like I'd like to be able to add tolerations to the deployment in such a way that they won't be reset. Perhaps an azure CLI experience like: az aks update -g MyResourceGroup -n MyManagedCluster \ --image-cleaner-tolerations key=layer operator=Equal value=api effect=NoSchedule