Cross-site Scripting Question

[pedzsan]

From an email I received from TxTag.org:

Make sure you are using Google Chrome or Microsoft Edge on a real pc computer
If you are using an iPhone, go to Settings app. Click on Safari, then scroll all the way down until you see Prevent Cross - Site Tracking
and turn it off. It should work then.

Cross site scripting has been an issue since I started doing browser stuff back in 2006. Ruby on Rails talked about it. I guess Apple introduced new restrictions within the past six months or so. I use to could go to the site and pay my bill but then it stopped working. Instead a box would pop up saying that the content could not be shown within a frame.

Turns out, I need to uncheck the box as the reply suggests. So I unchecked it, paid my bill, and checked it back.

My curiosity is: does Chrome and Edge not have these safe guards? I thought it would be somewhat basic security measure at this point.