Patch http-server to support cross-origin-isolation headers

Workaround for http-party/http-server#806 to be merged
or http-server with --header argument support release, since 14.1.1 was released
almost 3 years ago and header support added after

Author: Scarabol