Add support for Upgrade request to a potentially trustworthy URL. (#34986)

* Add support for Upgrade request to a potentially trustworthy URL.

Signed-off-by: Shubham Gupta <shubham13297@gmail.com>

* script: Support inheritable insecure request policy in documents and workers.

Signed-off-by: Josh Matthews <josh@joshmatthews.net>

---------

Signed-off-by: Shubham Gupta <shubham13297@gmail.com>
Signed-off-by: Josh Matthews <josh@joshmatthews.net>
Co-authored-by: Shubham Gupta <shubham.gupta@chromium.org>
Co-authored-by: Josh Matthews <josh@joshmatthews.net>

components/script/dom/htmliframeelement.rs

@@ -267,6 +267,7 @@ impl HTMLIFrameElement {
                 window.as_global_scope().get_referrer(),
                 document.get_referrer_policy(),
                 Some(window.as_global_scope().is_secure_context()),
+                Some(document.insecure_requests_policy()),
             );
             let element = self.upcast::<Element>();
             load_data.srcdoc = String::from(element.get_string_attribute(&local_name!("srcdoc")));
@@ -357,6 +358,7 @@ impl HTMLIFrameElement {
             window.as_global_scope().get_referrer(),
             referrer_policy,
             Some(window.as_global_scope().is_secure_context()),
+            Some(document.insecure_requests_policy()),
         );
 
         let pipeline_id = self.pipeline_id();
@@ -401,6 +403,7 @@ impl HTMLIFrameElement {
             window.as_global_scope().get_referrer(),
             document.get_referrer_policy(),
             Some(window.as_global_scope().is_secure_context()),
+            Some(document.insecure_requests_policy()),
         );
         let browsing_context_id = BrowsingContextId::new();
         let top_level_browsing_context_id = window.window_proxy().top_level_browsing_context_id();