CVE because of dependency on yaml@2.2.1

[aukevanleeuwen]

🤔 What's the problem you've observed?

I was alerted by dependabot of a vulnerability because of a transitive dependency on yaml@2.2.1 (via @cucumber/cucumber-js).

✨ Do you have a proposal for making it better?

Update to yaml@2.2.2.

📚 Any additional context?

[bchew]

@davidjgoss is there a plan for a release to npm with this fix soon? Thanks

[davidjgoss]

Released in https://github.com/cucumber/cucumber-js/releases/tag/v9.1.1 - sorry for the delay.