fix: upgrade to mpath v0.8.4 re: security issue

Note that the security issue in earlier versions of mpath does **not** affect Mongoose

Fix #10683

lib/document.js

@@ -1368,8 +1368,6 @@ Document.prototype.$set = function $set(path, val, type, options) {
         this.unmarkModified(path);
       }
     }
-  } else {
-    console.log('No shouldSet', path);
   }
 
   if (schema.$isSingleNested && (this.isDirectModified(path) || val == null)) {

package.json

@@ -25,7 +25,7 @@
     "kareem": "2.3.2",
     "mongodb": "3.6.11",
     "mongoose-legacy-pluralize": "1.0.2",
-    "mpath": "0.8.3",
+    "mpath": "0.8.4",
     "mquery": "3.2.5",
     "ms": "2.1.2",
     "optional-require": "1.0.x",