X-Frame-Options is a security header to prevent a well-known vulnerability called Clickjacking. This instruct browser not to open a web page in a frame or iframe based on the configuration.
You can inject HTTP response header by configuring a web server or network devices. The following guide should help you.
X-Frame-Options header is compatible with the modern browser. Once implemented, you can use this tool to verify.