The same-origin value for SVG specifies that a request’s full referrerURL is sent as referrer information when making same-origin-referrer requests.

Cross-origin-referrer requests, on the other hand, will contain no referrer information. A Referer HTTP header will not be sent.

same-origin

• empty-string
• no-referrer
• no-referrer-when-downgrade
• origin
• origin-when-cross-origin
• strict-origin
• strict-origin-when-cross-origin
• unsafe-url

• World Wide Web Consortium (W3C)