An iframe allows a webpage to display content from a different domain. The syntax generally includes attributes defining the source URL ( src ), dimensions ( width , height ), and border properties ( frameborder ).
The HTTP Content-Security-Policy header allows site administrators to whitelist sources from which resources, including iframes, can be loaded. The frame-src directive specifically controls valid sources for iframes. An iframe allows a webpage to display content