You have implemented a hub-and-spoke architecture in Google Cloud using VPC Network Peering to connect spoke networks to the hub. For security, you deployed a private GKE cluster in a spoke project with a private control plane endpoint, restricting authorized networks to the GKE node subnet. However, you cannot access the GKE control plane from another spoke project. How can you enable access to the GKE control plane from other spoke projects?