KAFKA-20168: Downgrade Jetty from 12.0.32 to 12.0.25 to fix SLF4J 2.x incompatibility (4.1)

[mingyen066]

Jetty 12.0.30+ introduced SLF4J 2.x fluent API usage
(Logger.atDebug()) which causes NoSuchMethodError at runtime since
Kafka still uses SLF4J 1.7.x. Downgrade to 12.0.25 which includes the
CVE-2025-5115 fix without the SLF4J 2.x incompatibility.

The issue was discovered and discussed in
#21452 (comment).

trunk: #21559

[chia7712]

@AndrewJSchofield are you preparing the RC? I'd like to push a follow-up to remind developers to cross-check the slf4j issue when upgrading jetty. The trunk and 4.2 have the comment, but 4.1 and 4.0 are currently missing it. I'm happy to wait until the current RC is finalized.

[AndrewJSchofield]

@AndrewJSchofield are you preparing the RC? I'd like to push a follow-up to remind developers to cross-check the slf4j issue when upgrading jetty. The trunk and 4.2 have the comment, but 4.1 and 4.0 are currently missing it. I'm happy to wait until the current RC is finalized.

Yes, I am preparing the RC. Just got a set of system test results so I expect to send out the RC for approval soon.

[chia7712]

Yes, I am preparing the RC. Just got a set of system test results so I expect to send out the RC for approval soon.

Got it. I will push the addendum after RC is complete