Update log4j-core and log4j-api dependencies to 2.16.0

[tomeara]

Issue #, if available:
#289

Description of changes:
Mitigates against additional log4shell scenarios by upgrading log4j dependencies to 2.16.0

• Update log4j-core and log4j-api dependencies to 2.16.0
• Stage update to aws-lambda-java-log4j2 version 1.3.1

GitHub Advisory

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[ericlink]

This is now urgent, 2.16 is now required to remediate: https://logging.apache.org/log4j/2.x/security.html

[baldram]

I prepared a change late evening yesterday (I did not see this change then) but pushed now in the morning.

A previous fix was about changing minor not patch version.
If for consistency, the AWS team would like to mark this release as 1.4.0, here is my PR fixing the same problem:
#293
Otherwise it might be closed.

[msailes]

Thanks for the PR.

Duplicate of #293