There's only one link for words "donate", and it leads to https://donate.wikimedia.org/wiki/Special:FundraiserRedirect..., which is an entirely different site from en.wikipedia.org.

Or are you saying there's something in PCI-DSS that would prohibit creating a link from an insecure website to a secure one?