SameSite attribute will be set to None. Cookies are sent in both first-party and cross-origin requests.