/kind bug

A bug in the AzureAD microsoft-authentication-library-for-go library (versions prior to v1.6.0) prevented Kubernetes addons relying on it -- such as cloud-provider-azure and azuredisk-csi-driver -- from authenticating to the Azure China Cloud. See AzureAD/microsoft-authentication-library-for-go#589 for details.
Most affected addons have since released versions that include the patched library (v1.6.0+).
The CAPZ controller manager itself already uses v1.6.0, so it is not affected. However, the version of Azure Service Operator (ASO) currently vendored on main (v2.16.0) still depends on the unpatched MSAL library, which means ASO-managed resources cannot authenticate against Azure China Cloud.

ASO v2.17.0 includes the fix.

Is there a plan to bump the ASO dependency to at least v2.17.0 to resolve this authentication issue for Azure China Cloud users, as it blocks our kubernetes clusters upgrade?

What steps did you take and what happened:
The ASO controller can not authenticate to azure china cloud.

What did you expect to happen:

Anything else you would like to add:

Environment:

• cluster-api-provider-azure version: main
• Kubernetes version: (use kubectl version):
• OS (e.g. from /etc/os-release):