Hi Daniel,
As Enrique recommended please review your security policies for application website, to see if there is no such policy applied to block content from QuickSight (https://us-east-2.quicksight.aws.amazon.com/)
you can allow-list your application domain to QuickSight using QuickSight ADMIN user. Detail step to enable is in following link: Allow listing static domains - Amazon QuickSight