Update gson to its latest version

[JPrendy]

What is the purpose of this PR?

We noticed that using Snyk that our CI would fail due to the following warning raised by Snyk saying the current version gson that Retrofit uses is a high severity issue.

There are temporary ways to get around this with Snyk, but the permanent solution would be for Retrofit to upgrade to the latest version of gson to resolve this issue.

• The issue raised in the gson repository Prevent Java deserialization of internal classes google/gson#1991

• Fixed in this release https://github.com/google/gson/releases/tag/gson-parent-2.8.9

• Snyks warning https://snyk.io/vuln/SNYK-JAVA-COMGOOGLECODEGSON-1730327

Closes #3652

[JakeWharton]

Please keep in mind that we do not release new versions of this library solely to bump dependencies–even for vulnerabilities. As a consumer you should not rely on our transitive dependency to dictate the version of the serialization library and should instead maintain a sibling dependency on the version you desire (and be keeping that up to date).

E.g.,

implementation 'com.squareup.retrofit:retrofit2:2.9.0'
implementation 'com.squareup.retrofit:converter-gson:2.9.0'
implementation 'com.google.gson:gson:2.8.9'