diff --git a/netlify.toml b/netlify.toml
index 11ab08b..4a040f8 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -114,11 +114,10 @@
     for = "/*"
 
     [headers.values]
-        X-XSS-Protection = "1; mode=block"
         Strict-Transport-Security = "max-age=63072000; includeSubDomains; preload"
         X-Frame-Options = "deny"
         X-Content-Type-Options = "nosniff"
-        Content-Security-Policy = "upgrade-insecure-requests"
+        Content-Security-Policy = "upgrade-insecure-requests; reflected-xss"
         X-Permitted-Cross-Domain-Policies = "none"
         Referrer-Policy = "no-referrer"
         Clear-Site-Data = "cookies"