Beginning in early 2020, major web browser manufacturers and Microsoft moved to a secure-by-default strategy for cookies, including session cookies. The SameSite cookie attribute controls how the browser sends third-party cookies (also referred to as cross-site or cross-origin cookies). If your solution includes embedding content from a Hyland web application into another web application in a different domain, you must configure the Hyland web application to instruct the browser to send cookies across domains by modifying the SameSite cookie attribute to have a value of SameSite=None. Using SameSite=None requires an HTTPS connection for the Hyland web application.
For more information on configuring a Hyland web application to appropriately handle SameSite cookies, see the Web Server module reference guide.