Legacy iframe tags granted the embedded third-party page significant freedom, which introduced security risks like unwanted pop-up ads, automatic redirects, or malicious scripts executing on the host site.
Here's an example of what the code might look like: Legacy iframe tags granted the embedded third-party page