There are lots of wrong/incomplete instructions on how to completely disable CORS checks for Chrome/Chromium.
Here's what works for me as of February 2023:
mkdir -p /tmp/foo
chromium-browser --disable-web-security -disable-site-isolation-trials user-data-a-dir="/tmp/foo"
This should only be used by developers who know what they are doing. Logging into anything with a browser running with security disabled is a recipe for getting your credentials stolen or worse.