Fix security vulnerabilities that can't be automatically fixed by Dependabot alerts

# Description



Update JS and Rails dependencies from this [list of Dependabot alerts](https://github.com/ifmeorg/ifme/security/dependabot) 🔒  

Please make one PR per dependency update! There can be multiple assignees for this issue. Make a comment and state which dependency you'll be upgrading.

You'll be added to a specific org team so you can view the security page. You can't access it by default as an org member.

Do not update the Ruby, Rails, and React versions.

---

Please assign yourself (via the Assignees dropdown), if you do want to work on this issue. Can't find yourself? You need to [join our organization](https://github.com/ifmeorg/ifme/wiki/Join-Our-Slack).

Check out our [Picking Up Issues](https://github.com/ifmeorg/ifme/wiki/Picking-Up-Issues) guide if you haven't already!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Fix security vulnerabilities that can't be automatically fixed by Dependabot alerts #2119

Description

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Fix security vulnerabilities that can't be automatically fixed by Dependabot alerts #2119

Description

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions