This document discusses Kubernetes admission controllers and options for replacing the deprecated PodSecurityPolicy feature. It provides an overview of admission control and some of the built-in controllers. It notes that PodSecurityPolicy is being deprecated and discusses potential in-built and third-party replacements like OPA Gatekeeper, Kyverno, K-rail, and jsPolicy. The document includes demonstrations of OPA and Kyverno. It concludes that admission control is important for Kubernetes security and administrators will need to choose an option to replace PodSecurityPolicy.