Vulnerability: underscore-1.8.3.js

[tdashworth]

Vulnerability	Library	Description	Top Fix
High7.2CVE-2021-23358Mar-29-2021	underscore-1.8.3.js	The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is passed as an argument as it is not sanitized.	Upgrade to version underscore - 1.12.1,1.13.0-2https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23358