Guard against CVE-2020-10683 (dom4j reading external entities)

Description

The version of dom4j that we use allows External Entities by default which might enable XXE attacks.

Dom4j should either be updated, or configured properly.

Environment

None
Fixed

Priority

Blocker

Assignee

Guus der Kinderen

Reporter

Guus der Kinderen