fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MOCHA-2863123
- https://snyk.io/vuln/SNYK-JS-XML2JS-5414874

Author: snyk-bot

Diff for: package.json

@@ -78,7 +78,7 @@
         "merge2": "latest",
         "minimist": "latest",
         "mkdirp": "latest",
-        "mocha": "latest",
+        "mocha": "10.1.0",
         "mocha-fivemat-progress-reporter": "latest",
         "ms": "^2.1.3",
         "node-fetch": "^3.3.0",
@@ -88,7 +88,7 @@
         "typescript": "^4.5.5",
         "vinyl": "latest",
         "vinyl-sourcemaps-apply": "latest",
-        "xml2js": "^0.4.19"
+        "xml2js": "^0.5.0"
     },
     "scripts": {
         "prepare": "gulp build-eslint-rules",