chore(deps): Bump spring-security-core from 5.7.5 to 6.0.1

[dependabot[bot]]

Bumps spring-security-core from 5.7.5 to 6.0.1.

Release notes

Sourced from spring-security-core's releases.

6.0.1

:star: New Features

• Add EnableWebSecurity migration steps to 5.8 guide #12354
• Replace deprecated set-state set-output GitHub Action's commands #12299

:beetle: Bug Fixes

• codes in spring security docs fail to work #12342
• codes in spring security docs fail to work #12341
• DefaultLdapAuthoritiesPopulator throws NullPointerException #12409
• Error in ACLS document #12270
• Fix AuthorizationFilter diagram in docs #12288
• Incorrect Javadoc for class ExpressionAuthorizationDecision #12435
• Incorrect sample code in securityMatcher migration docs #12303
• Incorrect sample code in securityMatcher migration docs #12302
• It's not possible to disable micrometer obversability #12268
• ProxyFactoryBean on AuthenticationManager does not work in native mode #12367
• SecurityContextHolderFilter does not apply to async dispatch #12369
• SecurityContextHolderFilter does not apply to async dispatch #12368

:hammer: Dependency Upgrades

• Update hibernate-core to 6.1.6.Final #12423
• Update httpclient to 4.5.14 #12421
• Update io.projectreactor to 2022.0.1 #12419
• Update jackson-bom to 2.14.1 #12413
• Update jackson-databind to 2.14.1 #12414
• Update jackson-datatype-jsr310 to 2.14.1 #12415
• Update logback-classic to 1.4.5 #12412
• Update micrometer-observation to 1.10.2 #12417
• Update mockk to 1.13.3 #12418
• Update org.eclipse.jetty to 11.0.13 #12422
• Update org.jetbrains.kotlin to 1.7.22 #12424
• Update org.springframework to 6.0.3 #12426
• Update reactor-netty to 1.1.1 #12420
• Update slf4j-api to 2.0.6 #12425
• Update unboundid-ldapsdk to 6.0.7 #12416

:heart: Contributors

We'd like to thank all the contributors who worked on this release!

• @​mojavelinux

6.0.0

:rewind: Breaking Changes

• CsrfAuthenticationStrategy is not consistent with CsrfFilter #12235
• Register FilterChainProxy for all dispatcher types #12180

... (truncated)

Commits

• 5b759a3 Release 6.0.1
• f1824f8 Merge branch '5.8.x' into 6.0.x
• 36d83f8 Fix Javadoc since tag for class ExpressionAuthorizationDecision
• 334354f Update org.springframework to 6.0.3
• 97a7b46 Update slf4j-api to 2.0.6
• bf0ddd8 Update org.jetbrains.kotlin to 1.7.22
• ad22ef7 Update hibernate-core to 6.1.6.Final
• 8a30e08 Update org.eclipse.jetty to 11.0.13
• 4507072 Update httpclient to 4.5.14
• e1d61af Update io.projectreactor to 2022.0.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #672.