ingress-istio-injected-pods has incorrect pod selector for incoming traffic

For pods that are setup with istio injection, the Istio label is sidecar.istio.io/inject. But, the ingress-istio-injected pods network policy uses istio-sidecar.istio.io/inject=true.

When I was testing with a pod, I ran across it not working when network policies were setup due to this mismatch. I didn't have the namespace setup for auto injection (just the pod).