[Defender] IFrame Clickjacking Buster

Be nice to have an Iframe buster to mod the .htaccess so clickjackers can\'t embed in iframe.
Something like:
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors \'none\'