Review Mozilla 1749323: Allow shipping OffscreenCanvas via a pref-based hostname allowlist

https://bugzilla.mozilla.org/show_bug.cgi?id=1749323

We should make sure this feature is disabled when privacy.resistFingerprinting is enabled or that it triggers the expected canvas fingerprinting protections UX.

cc @duncan

related: #18599 (closed)