1. Go to Session Settings.
2. In Trusted Domains for Inline Frames, make sure your org’s Salesforce Visualforce Lightning Domain URL is added.
Example: https://{yourdomainname}.lightning.force.com
Enabling Salesforce “Enable clickjack protection for customer Visualforce pages with headers disabled” causing an issue for Visualforce that are used in iFrames
