<meta http-equiv="Referrer-Policy" content="strict-origin-when-cross-origin"/>

 <meta http-equiv="Content-Security-Policy" content="default-src 'none'; style-src 'self' 'unsafe-inline' https://*.multiscreensite.com https://*.cdn-website.com https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' https://*.multiscreensite.com https://*.cdn-website.com https://ajax.googleapis.com https://d32hwlnfiv2gyn.cloudfront.net https://cdn.jsdelivr.net; connect-src 'self'; font-src 'self' https://*.multiscreensite.com https://*.cdn-website.com https://fonts.gstatic.com; img-src 'self' https://*.multiscreensite.com https://*.cdn-website.com; form-action 'none'; base-uri 'none'; upgrade-insecure-requests"/>