[PoC] Research if WorkloadIdentity can be supported as registry cache upstream credentials

[ialidzhikov]

How to categorize this issue?

/area security usability
/kind enhancement

What would you like to be added:
Currently, the registry-cache extension accepts static credentials as upstream credentials. See How to provide credentials for upstream repository?.

gardener/gardener#13469 makes possible to have a WorkloadIdentity as a resource reference.

We could research if we can also support WorkloadIdentity for upstream credentials.

Why is this needed:
Allow eliminating static credentials by supporting WorkloadIdentity for upstream credentials.