Bump xmldom and webfonts-loader

[dependabot[bot]]

Removes xmldom. It's no longer used after updating ancestor dependency webfonts-loader. These dependencies need to be updated together.

Removes xmldom

Updates webfonts-loader from 4.1.0 to 7.5.2

Release notes

Sourced from webfonts-loader's releases.

v7.5.2

Update deps

v7.5.1

Update dependencies

v7.5.0

• Fix #143 (thanks @​pronav)
• Update dependencies

v7.4.0

• Add startCodepoint option (#144)
• Add cssContext option (#147)

v7.3.0

Fix #138: HTML file now generated through the html option

v7.2.0

• Upgrade deps to fix warning in Node

v7.1.1

• Fix #133: Remove github-sponsors and add funding info to package.json
• Update deps

v7.1.0

Compatibility with Webpack 5

v7.0.1

Fix missing FUNDING.yml on postinstall

v7.0.0

Fix #119: writeFiles is no longer accessible, the value sent to webfonts-generator is always false

v6.1.0

Kudos to @​andersk for optimizing package size (#117 and #118): down to 19.8kB now.

v6.0.2

#116: Move snyk to devDependencies

v6.0.1

Fix to make sure we use webfonts-generator default values

v6.0.0

writeFiles now defaults to true

v5.3.0

• Fix #98
• Upgrade deps

v5.2.2

... (truncated)

Commits

• 0f79579 7.5.2
• 33273d7 Merge pull request #168 from jeerbl/dependabot/npm_and_yarn/test-embed/async-...
• bcd6ab5 Merge pull request #169 from jeerbl/dependabot/npm_and_yarn/test/async-2.6.4
• dcd5b76 Bump async from 2.6.3 to 2.6.4 in /test-embed
• 53b9d61 Bump async from 2.6.3 to 2.6.4 in /test
• d2ad119 Merge pull request #163 from jeerbl/dependabot/npm_and_yarn/test-embed/minimi...
• f46af38 Merge pull request #164 from jeerbl/dependabot/npm_and_yarn/test/minimist-1.2.6
• 6322945 Merge pull request #165 from jeerbl/dependabot/npm_and_yarn/minimist-1.2.6
• 08f6170 Merge pull request #166 from jeerbl/dependabot/npm_and_yarn/async-3.2.3
• d5e5f7e Bump async from 3.2.0 to 3.2.3
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aeternity/aepp-components/network/alerts).