fix: apply credentials for native text tracks

[tsi]

Summary

Video.js only sends credentialed XHR for remote WebVTT when the HTML5 tech’s crossOrigin is use-credentials. Cloudinary already used withCredentials for HLS and source objects, but did not set player.crossOrigin, so cookies could be missing for .vtt loaded via native tracks (and chapters). Fetch-based SRT/transcript loading also omitted credentials.

Changes

• On Cloudinary refresh(), set player.crossOrigin to use-credentials when the current VideoSource has withCredentials, otherwise null, before player.src().
• Extend fetchFileContent with a credentials option (default omit) and pass include/omit from the active source’s withCredentials when loading SRT/transcript tracks.
• Add unit tests for fetchFileContent credential behavior.

[netlify]

✅ Deploy Preview for cld-vp-esm-pages ready!

Name	Link
🔨 Latest commit	a19517a
🔍 Latest deploy log	https://app.netlify.com/projects/cld-vp-esm-pages/deploys/69d38c45efaf100009457ca7
😎 Deploy Preview	https://deploy-preview-1023--cld-vp-esm-pages.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[netlify]

✅ Deploy Preview for cld-video-player ready!

Name	Link
🔨 Latest commit	a19517a
🔍 Latest deploy log	https://app.netlify.com/projects/cld-video-player/deploys/69d38c455ee3190008919eeb
😎 Deploy Preview	https://deploy-preview-1023--cld-video-player.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.