Hi @gkalyan , I can't modify server's headers and <meta> tag solution is also not resolving the issue .So , what I understand is /libs/cq/xssprotection/config.xml ( overlayed by /apps/cq/xssprotection/config.xml ) provides XSS protection mechanism which filters out all user-supplied content ( in my...