telemetry: always install binding and if potentially skip role (#4165)

# Summary
- rolebinding has unique namespaced name and can always be installed
- role is unique and should be skipped if configured that way

## Proof of Work

```
(venv) ~/projects/ops-manager-kubernetes git:[fix-helm-chart]
helm template operator-2 helm_chart --set operator.telemetry.installClusterRole=false | rg clusterVersion
# ClusterRoleBinding for clusterVersionDetection
(venv) ~/projects/ops-manager-kubernetes git:[fix-helm-chart]
helm template operator-2 helm_chart| rg clusterVersion
# Additional ClusterRole for clusterVersionDetection
# ClusterRoleBinding for clusterVersionDetection
```

## Checklist
- [ ] Have you linked a jira ticket and/or is the ticket in the title?
- [ ] Have you checked whether your jira ticket required DOCSP changes?
- [ ] Have you checked for release_note changes?

## Reminder (Please remove this when merging)
- Please try to Approve or Reject Changes the PR, keep PRs in review as
short as possible
- Our Short Guide for PRs:
[Link](REDACTED)
- Remember the following Communication Standards - use comment prefixes
for clarity:
  * **blocking**: Must be addressed before approval.
  * **follow-up**: Can be addressed in a later PR or ticket.
  * **q**: Clarifying question.
  * **nit**: Non-blocking suggestions.
  * **note**: Side-note, non-actionable. Example: Praise
  * --> no prefix is considered a question

Author: nammn

config/rbac/operator-roles.yaml

@@ -1,5 +1,6 @@
 ---
 # Source: enterprise-operator/templates/operator-roles.yaml
+---
 # Additional ClusterRole for clusterVersionDetection
 kind: ClusterRole
 apiVersion: rbac.authorization.k8s.io/v1
@@ -28,7 +29,6 @@ rules:
       - list
 ---
 # Source: enterprise-operator/templates/operator-roles.yaml
----
 # ClusterRoleBinding for clusterVersionDetection
 kind: ClusterRoleBinding
 apiVersion: rbac.authorization.k8s.io/v1

helm_chart/templates/operator-roles.yaml

@@ -185,21 +185,7 @@ subjects:
 {{/* We can't use default here, as 0, false and nil as determined as unset and thus set the default value */}}
 {{- if ne $telemetry.enabled false }}
   {{- if ne $telemetry.installClusterRole false}}
----
-# ClusterRoleBinding for clusterVersionDetection
-kind: ClusterRoleBinding
-apiVersion: rbac.authorization.k8s.io/v1
-metadata:
-  name: {{ .Values.operator.name }}-{{ include "mongodb-enterprise-operator.namespace" . }}-cluster-telemetry-binding
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: {{ $clusterRoleName }}
-subjects:
-  - kind: ServiceAccount
-    name: {{ .Values.operator.name }}
-    namespace: {{ include "mongodb-enterprise-operator.namespace" . }}
-{{- end }}
+
 ---
 # Additional ClusterRole for clusterVersionDetection
 kind: ClusterRole
@@ -228,3 +214,18 @@ rules:
     verbs:
       - list
 {{- end}}
+---
+# ClusterRoleBinding for clusterVersionDetection
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: {{ .Values.operator.name }}-{{ include "mongodb-enterprise-operator.namespace" . }}-cluster-telemetry-binding
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: {{ $clusterRoleName }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ .Values.operator.name }}
+    namespace: {{ include "mongodb-enterprise-operator.namespace" . }}
+{{- end }}