NIFI-10271 Upgrade Xerces from 2.12.1 to 2.12.2

[exceptionfactory]

Summary

NIFI-10271 Upgrades Xerces to 2.12.2 in the following modules:

• nifi-hive-bundle
• nifi-media-processors
• nifi-scripting-processors

Upgrading to Xerces 2.12.2 resolves a resource exhaustion vulnerability described in CVE-2022-23437.

Additional changes include suppressing false positive reports for CVE-2017-10355 in the OWASP Dependency Check Report.

Tracking

Please complete the following tracking steps prior to pull request creation.

Issue Tracking

• Apache NiFi Jira issue created

Pull Request Tracking

• Pull Request title starts with Apache NiFi Jira issue number, such as NIFI-00000
• Pull Request commit message starts with Apache NiFi Jira issue number, as such NIFI-00000

Pull Request Formatting

• Pull Request based on current revision of the main branch
• Pull Request refers to a feature branch with one commit containing changes

Verification

Please indicate the verification steps performed prior to pull request creation.

Build

• Build completed using mvn clean install -P contrib-check
  • JDK 8
  • JDK 11
  • JDK 17

Licensing

• New dependencies are compatible with the Apache License 2.0 according to the License Policy
• New dependencies are documented in applicable LICENSE and NOTICE files

Documentation

• Documentation formatting appears as expected in rendered files