Moment.js flagged as vulnerable in Qualys scan

[rgrainer]

Qualys scan found vulnerable js library:

• moment.js: Version 2.8.3

Looks like it's a part of this bundle: http://static-assets.ny.gov/sites/all/widgets/universal-navigation/js/dist/global-nav-bundle.js

alertnygov-production-Scan_Report_nyses2cc4_20180629.pdf