feat: add `enforceAnonymousCrossOrigin` option

[castarco]

To enhance security, it is a good idea to enforce that cross-origin scripts are loaded with "anonymous" credentials (setting the crossorigin="anonymous" attribute).

Progress Tracking

• Add enforceAnonymousCrossOrigin option to integration config options, with its corresponding behaviour (should be marked as true by default!).
  • Note: In the end I didn't add an option, but enabled it by default. Disabling it should be done on case by case basis, through the exceptions scape hatch.
• Make it possible to specify exceptions to the rule

[castarco]

The small added value won't compensate for the extra complexity