multiple high and critical issues in `yarn audit`

[mrdowns]

When running yarn audit we noticed multiple high and critical issues that have patches available.

We also noticed multiple pull requests that were closed without merging, for example: #1258

We're wondering if there's a reason for not merging in those patches, or if you plan to patch these vulnerabilities soon.

Thanks!

[miniscruff]

I have created an internal epic to track these issues to get these resolved as soon as possible.
In terms of the PRs being closed without merging, I can not say for sure but we will probably have to close a few as we work through them manually.