Issue with CA Advanced Auth cookie - JSessionID

While integrating CA Advanced Auth with an application, we are seeing an error in our network trace which states, cookie header didn't specify same site attribute and was defaulted to samesite=LAX and was blocked because it came from a cross-site response which was not the response to the toplevel navigation. 

Can you please guide us on where the configuration is for these headers, and how to fix this error? 

Release : 9.1

ca-authid-javascript-client-6.0.5.1 client is provided to address this issue, This is uploaded here in the KB article as well.