At CloudForge Systems , a critical security patch has been released for a vulnerability affecting their containerized application running on Google Kubernetes Engine (GKE) . The DevOps team is responsible for ensuring that all running containers are promptly updated. What is the correct way for the team to apply the patch?