layout_image: Include missing request settings in layout-initiated image loads (#36621)

This PR updates the `fetch_image_for_layout` function to include missing
security-related request settings:

- `insecure_requests_policy`
- `has_trustworthy_ancestor_origin`
- `policy_container`

---
<!-- Thank you for contributing to Servo! Please replace each `[ ]` by
`[X]` when the step is complete, and replace `___` with appropriate
data: -->
- [X] `./mach build -d` does not report any errors
- [X] `./mach test-tidy` does not report any errors
- [X] These changes fix #36591

<!-- Either: -->
- [X] There are tests for these changes

Signed-off-by: Emmanuel Elom <elomemmanuel007@gmail.com>

tests/wpt/mozilla/meta/MANIFEST.json

@@ -12755,6 +12755,13 @@
       {}
      ]
     ],
+    "background_image_csp.sub.html": [
+     "c326f54de52c6a36cbaf4871c947c5b785cac83d",
+     [
+      null,
+      {}
+     ]
+    ],
     "binding_keyword.html": [
      "818d2aa29471026c1b4215dfcd1b9939a052b1ea",
      [