Check CSRF token in UsageData API

Add CSRF token check in UsageData API as a protection

Follow up discussion from !41301 (comment 410152712)

!41301 (comment 410005328)