CVE-2020-7733 vulnerability by linking to an older fbjs version

[tjercus]

For details see https://www.tenable.com/cve/CVE-2020-7733. The fix would be to upgrade the dependency fbjs to the latest version. That version is not vulnerable.

[TomBrien]

Also found this package as the root cause of a vulnerability to CVE-2020-15168 which would be solved by bumping fbjs

[dschaller]

Fixed in https://github.com/facebook/flux/pull/507