This usually happens when the site sends security headers like
X-Frame-Options or a Content-Security-Policy with
frame-ancestors that blocks embedding. [oai_citation:1‡MDN Web Docs](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Frame-Options?utm_source=chatgpt.com)