While I can appreciate it doesn't affect the HPM in any way and submission is still possible -- it erodes customer confidence whenever they see a browser error and being asked to complete something financial in nature. It would be best if Zuora could fix this bug by either populating the header or removing it as suggested at http://community.zuora.com/t5/Integrations-Extensions/Error-X-Frame-Options/td-p/10331 Invalid 'X-Frame-Options' header encountered when loading 'https://apisandbox.zuora.com/apps/PublicHostedPageLite.do?method=requestPag[…]&field_bankTransferType=DirectDebitUK&customizeErrorRequired=true&': '' is not a recognized directive. The header will be ignored.
... View more