Use new severity levels

[NIGCH]

A tentative fix to replace the deprecated severity levels. Also included is a change to DependencyCheckUtils.severityToScore() to always use the CVSS scores in the specification to map a severity string to a CVSS score, rather than the configurable thresholds which determine how CVSS scores map to SonarQube severities.

[Reamer]

Hi @NIGCH, thanks for your Pull-Request. Can you please split the changes into two separate Pull-Request.

Btw. SonarQube 10.x is currently no LTS Release and with the API change, the plugin should increase the major version.

[NIGCH]

Thanks @Reamer, I've raised a new PR to change just the severity levels and will follow up later on the CVSS scores.