NIFI-10146 Upgrade Apache Tika from 2.4.0 to 2.4.1

[exceptionfactory]

Summary

NIFI-10146 Upgrades Apache Tika dependencies from 2.4.0 to 2.4.1 and removes the direct dependency on metadata-extractor to inherit a newer transitive version, which resolves CVE-2022-24613 and CVE-2022-24613 related to processing crafted JPEG files.

Tracking

Please complete the following tracking steps prior to pull request creation.

Issue Tracking

• Apache NiFi Jira issue created

Pull Request Tracking

• Pull Request title starts with Apache NiFi Jira issue number, such as NIFI-00000
• Pull Request commit message starts with Apache NiFi Jira issue number, as such NIFI-00000

Pull Request Formatting

• Pull Request based on current revision of the main branch
• Pull Request refers to a feature branch with one commit containing changes

Verification

Please indicate the verification steps performed prior to pull request creation.

Build

• Build completed using mvn clean install -P contrib-check
  • JDK 8
  • JDK 11
  • JDK 17

Licensing

• New dependencies are compatible with the Apache License 2.0 according to the License Policy
• New dependencies are documented in applicable LICENSE and NOTICE files

Documentation

• Documentation formatting appears as expected in rendered files