I have update my store to Magento version 2.4.6-p6
Aaaand there is an issue with newly added restricted CSP policy on checkout page.
I have a bunch inline scripts that are added via admin panel (Content->Design->Configuration->Theme->Html head). Most of them are being blocked by CSP
What is the safest way to fix this besides moving scripts to the .phtml and adding safe render?
Magento documentation is dead on this topic. Which makes me very frustrated. https://developer.adobe.com/commerce/php/development/security/content-security-policies
P.s. I don’t want any strange workarounds that allows unsafe inline scripts globally or on whole checkout page. Because that smells like unsafe option.
EDIT Update
For example this script was marked as blocked.
<script type="text/javascript">
zE('webWidget', 'setLocale', 'NB');
</script>