A. Enable client-side scripts on a per-domain basis.
B. Incorporate contextual output encoding/escaping. Most Voted
C. Disable cookie inspection in the HTML inspection engine.
D. Run untrusted HTML input through an HTML sanitization engine. Most Voted
E. SameSite cookie attribute should not be used.