Merge pull request kubernetes#50198 from my-git9/np-30129

[zh-cn]sync security/_index.md

Author: k8s-ci-robot

Diff for: content/zh-cn/docs/concepts/security/_index.md

@@ -105,6 +105,24 @@ or detective controls around Pods, their containers, and the images that run in
 [网络策略（NetworkPolicy)](/zh-cn/docs/concepts/services-networking/network-policies/)
 可让控制 Pod 之间或 Pod 与集群外部网络之间的网络流量。
 
+<!--
+### Admission control {#admission-control}
+
+[Admission controllers](/docs/reference/access-authn-authz/admission-controllers/)
+are plugins that intercept Kubernetes API requests and can validate or mutate
+the requests based on specific fields in the request. Thoughtfully designing
+these controllers helps to avoid unintended disruptions as Kubernetes APIs
+change across version updates. For design considerations, see
+[Admission Webhook Good Practices](/docs/concepts/cluster-administration/admission-webhooks-good-practices/).
+-->
+### 准入控制   {#admission-control}
+
+[准入控制器](/zh-cn/docs/reference/access-authn-authz/admission-controllers/)是拦截
+Kubernetes API 请求的插件，可以根据请求中的特定字段验证或修改请求。
+精心设计这些控制器有助于避免 Kubernetes API 在版本更新过程中发生意外干扰。
+有关设计注意事项，请参阅
+[Admission Webhook 良好实践](/zh-cn/docs/concepts/cluster-administration/admission-webhooks-good-practices/)。
+
 <!--
 ### Auditing