Add support for "bgpPeer.spec.passwordSecret" and maybe other possible values

We should allow more control over the fields of the Metallb CRs, especially for authentication.

For bgpPeers we should use passwordSecret instead of password to avoid leaking it.