fix: window.open not overriding parent's webPreferences

[zcbenz]

Description of Change

This PR fixes an issue that, child window opened with window.open can not override its web preferences inherited from the parent window, close #31949, close #31959.

Please check the comments in electron_render_frame_observer.cc for the background of the problem.

Fix PR also fixes an issue introduced by #31031 that, the feature string in window.open was treated as windowOpenOverriddenOptions which would override the securityWebPreferences. This problem was hidden by the above bug 31949 because the web preferences could not be overridden, but with the bug fixed 31031 would then allow features string to override security options.

There are also changes to tests as some of them rely on the bug to work.

Release Notes

Notes: Fix window.open not overriding parent's webPreferences.

[deepak1556]

When browser side navigation is triggered, won't there be another call to ElectronRenderFrameObserver::DidInstallConditionalFeatures from https://source.chromium.org/chromium/chromium/src/+/main:third_party/blink/renderer/bindings/core/v8/local_window_proxy.cc;l=216-220 which will then initialize based on the correct preferences, is this second redirection via ElectronRenderFrameObserver::DidClearWindowObject needed ?

[zcbenz]

For child window opened by window.open, the DidInstallConditionalFeatures is only called once, and DidClearWindowObject is instead called multiple times.

It seems that Chromium immediately creates an empty DOM window when window.open is called, and then does an in-place initialization later when the actual navigation happens, it does not create a new DOM window for the navigation.

I think this behavior is kind of reasonable, since the window object returned by window.open is immediately accessible to users even before the actual navigation starts.

[zcbenz]

I have updated the PR with another approach that does not need to patch Chromium.

I also found a Chromium issue that has some information on how window.open works.
https://bugs.chromium.org/p/chromium/issues/detail?id=1215096

[zcbenz]

I'm also removing the "nativeWindowOpen: false" option from renderer tests, which was required because some tests fail for the native window.open code path.

[release-clerk]

Release Notes Persisted

Fix window.open not overriding parent's webPreferences.

[trop]

I was unable to backport this PR to "13-x-y" cleanly;
you will need to perform this backport manually.

[trop]

I was unable to backport this PR to "14-x-y" cleanly;
you will need to perform this backport manually.

[trop]

I have automatically backported this PR to "17-x-y", please check out #32107

[trop]

I have automatically backported this PR to "16-x-y", please check out #32108

[trop]

@zcbenz has manually backported this PR to "15-x-y", please check out #32109