Use "navigation request's policy container's CSP list" instead of "navigation request's client's global object's CSP list" (#692)

Complements #494 in order make
the spec consistent.

Preparation to fix whatwg/html#4651.

Author: Mirko Brodesser

index.bs

@@ -1315,9 +1315,9 @@ spec:SRI; urlPrefix: https://w3c.github.io/webappsec-subresource-integrity
     3.  If |result| is "`Allowed`", and if |navigation request|'s
         <a for="request">current URL</a>'s <a for="url">scheme</a> is `javascript`:
 
-        1.  <a for=list>For each</a> |policy| of |navigation request|'s <a for="request">client</a>'s
-            <a for="environment settings object">global object</a>'s
-            <a for="global object">CSP list</a>:
+        1.  <a for=list>For each</a> |policy| of |navigation request|'s
+            <a for="request">policy container</a>'s
+            <a for="policy container">CSP list</a>:
 
             1.  <a for=set>For each</a> |directive| of |policy|: