After researching extensively internet I think I found the answer:
Sandboxing
For security reasons, Google Chrome is unable to provide sandboxing when it is running in the container-based environment.
To use Chrome in the container-based environment, pass the –no-sandbox flag to the chrome executable
So it looks like there is no better solution than –no-sandbox for me, even though its not being very secure, there are people on the internet claiming that it is still safe to use “–no-sandbox” as its running within container which is extra protected any way.