Add google maps api host to secure headers (#2952)

app/controllers/concerns/maps_content_security_policy.rb

@@ -3,7 +3,7 @@ module MapsContentSecurityPolicy
 
   included do
     content_security_policy(only: :show) do |policy| # Allow google maps
-      policy.connect_src :self, 'https://www.google.com', 'https://www.google-analytics.com'
+      policy.connect_src :self, 'https://www.google.com', 'https://www.google-analytics.com', 'https://maps.googleapis.com'
       policy.frame_src :self, "https://www.googletagmanager.com/" # GTM fallback
       policy.font_src :self, :data, "https://fonts.gstatic.com"
       policy.img_src :self, :data, "https://www.google.com", "https://maps.googleapis.com", "https://maps.gstatic.com/", "https://www.google-analytics.com"