Remove the 'reflected-xss' directive from CSP.

third_party/WebKit/Source/core/html/parser/XSSAuditorDelegate.cpp

Index: third_party/WebKit/Source/core/html/parser/XSSAuditorDelegate.cpp
diff --git a/third_party/WebKit/Source/core/html/parser/XSSAuditorDelegate.cpp b/third_party/WebKit/Source/core/html/parser/XSSAuditorDelegate.cpp
index cf34b0f0648f6a01271249bf1ab1e70716dfa7b6..fcccb1c1815d7b6bb6aa767a0ed5ed5776aac958 100644
--- a/third_party/WebKit/Source/core/html/parser/XSSAuditorDelegate.cpp
+++ b/third_party/WebKit/Source/core/html/parser/XSSAuditorDelegate.cpp
@@ -52,18 +52,14 @@ String XSSInfo::buildConsoleError() const {
                                       : "its source code");
   message.append(" was found within the request.");
 
-  if (m_didSendCSPHeader)
-    message.append(
-        " The server sent a 'Content-Security-Policy' header requesting this "
-        "behavior.");
-  else if (m_didSendXSSProtectionHeader)
+  if (m_didSendXSSProtectionHeader)
     message.append(
         " The server sent an 'X-XSS-Protection' header requesting this "
         "behavior.");
   else
     message.append(
-        " The auditor was enabled as the server sent neither an "
-        "'X-XSS-Protection' nor 'Content-Security-Policy' header.");
+        " The auditor was enabled as the server did not send an "
+        "'X-XSS-Protection' header.");
 
   return message.toString();
 }