fix(nextjs-mf): Try CSP-safe method for getting globalThis first

[mitchellrj]

Description

Where unsafe-eval is not permitted in a Content Security Policy, trying the Function approach first then falling back causes unnecessary CSP Reports and errors to be logged by the browser. This approach uses globalThis by default, then attempts to catch the Webpack rewriting of it.

Related Issue

#3772

Types of changes

• Docs change / refactoring / dependency upgrade
• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)

Checklist

• I have added tests to cover my changes.
• All new and existing tests passed.
• I have updated the documentation.

[changeset-bot]

🦋 Changeset detected

Latest commit: bbe342e

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
@module-federation/nextjs-mf	Minor

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[netlify]

✅ Deploy Preview for module-federation-docs ready!

Name	Link
🔨 Latest commit	bbe342e
🔍 Latest deploy log	https://app.netlify.com/projects/module-federation-docs/deploys/68275854e98601000829ad1b
😎 Deploy Preview	https://deploy-preview-3776--module-federation-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[ScriptedAlchemy]

@mitchellrj run pnpm changeset add

[ScriptedAlchemy]

@mitchellrj bump