The development team wants to block Cross Site Scripting attacks from pods its environment.
How should the team construct the CNAF policy to protect against this attack?
A . create a Container CNAF policy, targeted at a specific resource, check the box for XSS attack protection and set the action to alert
B . create a Host CNAF policy targeted at a specific resource, check the box for XSS attack protection and set the action to "prevent"
C . create a Container CNAF policy, targeted at a specific resource, check the box for XSS attack protection and set the action to prevent
D . create a Container CNAF policy, targeted at a specific resource, and they should set "Explicitly allowed inbound IP sources" to the IP address of the pod.
Answer: B