How to block crosssite scripting in Azure App Servie?

I have nodejs docker application is running on Azure’s App Services. It has been set up a custom domain.

I want to block cross-site scripting. In nginx i can add more_set_headers "x-xss-protection: 1; mode=block"; to block the cross-site scripting.

How do we achieve this in Azure App Service? Is this okay to run Nginx in the same container?

Source: StackOverflow