Bug 1802346 - Use the owner principal in ParseFromSafeString, r=smaug

This is done rather than using the system principal to avoid potential
cross-docgroup adoption issues.

Differential Revision: https://phabricator.services.mozilla.com/D163017

dom/base/DOMParser.cpp

@@ -103,12 +103,13 @@ already_AddRefed<Document> DOMParser::ParseFromString(const nsAString& aStr,
 already_AddRefed<Document> DOMParser::ParseFromSafeString(const nsAString& aStr,
                                                           SupportedType aType,
                                                           ErrorResult& aRv) {
-  // Since we disable cross docGroup node adoption, it is safe to create
-  // new document with the system principal, then the new document will be
-  // placed in the same docGroup as the chrome document.
+  // Create the new document with the same principal as `mOwner`, even if it is
+  // the system principal. This will ensure that nodes from the returned
+  // document are in the same DocGroup as the owner global's document, allowing
+  // nodes to be adopted.
   nsCOMPtr<nsIPrincipal> docPrincipal = mPrincipal;
-  if (!mPrincipal->IsSystemPrincipal()) {
-    mPrincipal = SystemPrincipal::Create();
+  if (mOwner && mOwner->PrincipalOrNull()) {
+    mPrincipal = mOwner->PrincipalOrNull();
   }
 
   RefPtr<Document> ret = ParseFromString(aStr, aType, aRv);