Add kubernetes alerting rule templates

[osamamehtab-elk]

Proposed commit message

Add 42 ES|QL-based alerting rule templates for the Kubernetes integration.

WHAT:

• Adds alerting rule templates under packages/kubernetes/kibana/alerting_rule_template/
• Covers node, pod, container, deployment, daemonset, statefulset, job, volume, and API server monitoring scenarios
• All rules use ES|QL queries with .es-query rule type and searchType: esqlQuery
• Rules include inline ES|QL comments documenting what triggers the alert, how to adjust thresholds, and grouping strategy
• Template rules include placeholder comments for customer customization
• Files follow kubernetes-<alert-name>.json naming convention
• Bumps format_version to 3.4.0 and package version to 1.86.0

WHY:
The Kubernetes integration currently ships no alerting rule templates. Customers must write queries from scratch to set up monitoring. These templates provide curated, ready-to-use alert definitions covering common Kubernetes failure modes and resource saturation scenarios, enabling faster time-to-value.

Checklist

• I have reviewed tips for building integrations and this pull request is aligned with them.
• I have verified that all data streams collect metrics or logs.
• I have added an entry to my package's changelog.yml file.
• I have verified that Kibana version constraints are current according to guidelines.
• I have verified that any added dashboard complies with Kibana's Dashboard good practices

Author's Checklist

• elastic-package check passes (lint + build)
• Package builds as kubernetes-1.85.0.zip
• Requesting feedback on whether TS command should be used instead of FROM for metrics data stream queries
• Requesting feedback on investigation guide content reflected in ES|QL comments

How to test this PR locally

cd packages/kubernetes
elastic-package check

Install the built package in a Kibana >= 9.2.1 instance and verify the alerting rule templates appear under the Kubernetes integration's Assets tab.

Related issues

• Relates Add alerts/watchers as assets in packages package-spec#484
• Reference PR: [system/{diskio,network}]: Add alerting rule templates #15998

Screenshots

[elasticmachine]

Pinging @elastic/integrations-services (Team:Services)

[elastic-vault-github-plugin-prod]

🚀 Benchmarks report

To see the full report comment with /test benchmark fullreport

[miguel-sanchez-elastic]

Hi @tommyers-elastic , I had a chat with @osamamehtab-elk and he was wondering if anyone from the integrations team can see if this is ready to be merged.

If that's not the case it would be great that someone can tell him what's missing (if anything).

cc @daniela-elastic

[elasticmachine]

💚 Build Succeeded

• Buildkite Build
• Commit: e0651c3

History

• 💚 Build #38971 succeeded fd4905c
• 💚 Build #38904 succeeded bea86bc
• 💚 Build #38894 succeeded 962f13d
• 💚 Build #38879 succeeded 0b89a16
• 💚 Build #38849 succeeded bf948fe
• 💚 Build #38783 succeeded 9caf153