Update xmldom to 0.7.0

[forty]

The package is now scoped under @xmldom. See https://github.com/xmldom/xmldom/pull/278 This fixes security vulnerability CVE-2021-32796

By submitting a PR to this repository, you agree to the terms within the Auth0 Code of Conduct. Please see the contributing guidelines for how to create and submit a high-quality PR for this repo.

Description

Fixes CVE-2021-32796

References

https://nvd.nist.gov/vuln/detail/CVE-2021-32796 https://snyk.io/vuln/SNYK-JS-XMLDOM-1534562 https://github.com/xmldom/xmldom/pull/278

Testing

Tests pass

Checklist

• [x] I have added documentation for new/changed functionality in this PR or in auth0.com/docs
• [x] All active GitHub checks for tests, formatting, and security are passing
• [x] The correct base branch is being used, if not master

[christian-hawk]

Any of the admins will review this PR?

[qubyte]

Can this be released please? 🙏

[esarafianou]

@qubyte It's already in npm: https://www.npmjs.com/package/xml-encryption but I'll release it now on GH too.

[qubyte]

Oh! My apologies. I was after the npm package as you say. I checked if it was there this morning (UK time) but didn't recheck before I commented (just the releases). Thank you!