CSP: Avoid using unsafe-inline scripts in dom onClick attributes

[runephilosof-abtion]

Please move this onClick script to a script tag.

jetpack/projects/plugins/jetpack/modules/scan/class-admin-bar-notice.php

Line 179 in 03af434

$node['meta']['onclick'] = 'window.open( this.href ); return false;';

When wp_add_inline_script is used instead, I can hook into it and add a nonce to it.