Draft: fix: set cookie samesite to None
Needed when the cubicweb instance is not on the same server as react admin.
More research is needed to find the most secure fix.
See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite.