This document discusses mutating admission webhooks in Kubernetes. It provides context on PNFs, VNFs, and CNFs. It then describes how a mutating admission webhook can be implemented to inject a generic NSE sidecar into pods. It outlines the prerequisites and provides links to example implementations of generating certificates, deploying webhook resources, and creating a MutatingWebhookConfiguration to deploy the webhook.