diff --git a/argocd/applications/configs/kyverno-traefik-policy.yaml b/argocd/applications/configs/kyverno-traefik-policy.yaml
index d431363da..02716082f 100644
--- a/argocd/applications/configs/kyverno-traefik-policy.yaml
+++ b/argocd/applications/configs/kyverno-traefik-policy.yaml
@@ -20,6 +20,7 @@ jwtMiddlewareException:
       - "iam-umbrella-nexus-api-gw-api-docs"
       - "cluster-connect-gateway-ws"
       - "cluster-connect-gateway-kubeapi"
+      - "orch-platform-keycloak"
   - namespace: "orch-boots"
     names:
       - "tinkerbell-nginx-ingress"
@@ -27,7 +28,6 @@ anyMiddlewareException:
   - namespace: "orch-gateway"
     names:
       - "orch-platform-grafana"
-      - "orch-platform-keycloak"
       - "orch-platform-vault"
       - "edgenode-observability-grafana"
       - "traefik-boots-ca-certificate"
diff --git a/argocd/applications/templates/traefik-extra-objects.yaml b/argocd/applications/templates/traefik-extra-objects.yaml
index d0826d33c..c02f08677 100644
--- a/argocd/applications/templates/traefik-extra-objects.yaml
+++ b/argocd/applications/templates/traefik-extra-objects.yaml
@@ -21,7 +21,7 @@ spec:
   sources:
     - repoURL: {{ required "A valid chartRepoURL entry required!" .Values.argo.chartRepoURL }}
       chart: common/charts/{{$appName}}
-      targetRevision: 4.1.9
+      targetRevision: 4.1.10
       helm:
         releaseName: {{$appName}}
         valuesObject:
diff --git a/e2e-tests/orchestrator/orchestrator_test.go b/e2e-tests/orchestrator/orchestrator_test.go
index d3f0ea422..cad5bcd1c 100644
--- a/e2e-tests/orchestrator/orchestrator_test.go
+++ b/e2e-tests/orchestrator/orchestrator_test.go
@@ -1005,7 +1005,6 @@ func secureHeadersAddAppOrch() map[string][]string {
 
 	appOrchSecureHeaders["Content-Security-Policy"] = []string{fmt.Sprintf("default-src 'self'; form-action 'self'; object-src 'none'; frame-ancestors 'none'; script-src 'self' ; frame-src 'self' https://keycloak.%s; style-src 'self'; img-src 'self' data:; connect-src 'self' https://keycloak.%s; upgrade-insecure-requests; block-all-mixed-content", //nolint: lll
 		serviceDomain, serviceDomain)}
-	appOrchSecureHeaders["Cross-Origin-Embedder-Policy"] = []string{"unsafe-none"}
 	delete(appOrchSecureHeaders, "X-Content-Type-Options")
 	delete(appOrchSecureHeaders, "X-Frame-Options")