User is unable to add their JIRA dashboards in an IFrame on an external website due to X-Frame being set to Same Origin
Site-admins to have the ability to modify the X-Frame settings.
It would be nice to have an option to disable the X-Frame setting and also an option to whitelist domains using X-Frame-Options: ALLOW-FROM which will make the instance more secure than completely disabling it.
Why this is important
Some users are missing features like adding their JIRA dashboard to their own website because of this X-Frame setting. Some users might want to take the increased risk of their instance being used for ClickJacking as long as they can use their instance in an IFrame.