Ok, so for the first issue. I believe it is because we added an escape function to that link which helps for security. So the alternative is to enter the link directly in the call-to-action.php file.
Can you show me what the Authorize.net link looks like?
As for the images, I checked on both Chrome and Firefox and it’s displaying on both for me.
It could be a caching issue.
When developing a site make sure you don’t have any caching plugins enabled and also clear your browser cookies and cache after making a change so it’s reflected on the front-end.