Refer: https://github.com/Esonhugh/KubernetesCRInjection.

Here is my documents. I think this is a Potential attack surface in SaaS system which based on kubernetes.
After I discussed with some Cloud security Researchers about such attack,I summarized such attack technique and wrote such document.