http:// instead of
https://. I would also take a look at other modules you have installed. Your Chrome’s DevTools (accessible via right-click > Inspect) will probably contain more information about which script Webmin is trying to include via http.
The obsolete cipher suite warning can probably be fixed by switching to “Only strong ciphers with perfect forward secrecy” (unless you have to support outdated browsers for some reason).