[Lighthouse] Ensure CSP is effective against XSS attacks

[glasgowm148]

Description | Severity.
No CSP found in enforcement mode | High

A strong Content Security Policy (CSP) significantly reduces the risk of cross-site scripting (XSS) attacks. Learn more