SECURITY: Insecure version of xmldom

[joebowbeer]

The xmldom version is locked to 0.1.7 which is vulnerable to XML External Entity Injection:

https://snyk.io/test/npm/xmldom/0.1.7

[joebowbeer]

@yaronn Threat-free versions of xmldom are now available at @xmldom/xmldom

https://github.com/xmldom/xmldom