Bump tinymce from 6.7.0 to 6.7.2

[dependabot]

Bumps tinymce from 6.7.0 to 6.7.2.

Changelog

Sourced from tinymce's changelog.

6.7.2 - 2023-10-25

Fixed

• The function getModifierState did not work on events passed through the editor as expected. #TINY-10263
• Removed use of async for editor rendering which caused visual blinking when reloading the editor in-place. #TINY-10249
• Toggling a list that contains an LI element having another list as its first child would remove the remaining content within that LI element. #TINY-10213
• List items containing a list element surrounded by non list nodes would cause some list operations to fail. #TINY-10268

6.7.1 - 2023-10-19

Fixed

• Specific HTML content caused mXSS when using undo/redo. #TINY-10180
• Specific HTML content caused mXSS when using the getContent and setContent APIs with the format: 'raw' option, which also affected the resetContent API and the draft restoration feature of the Autosave plugin. #TINY-10236
• Notification messages containing HTML were not properly XSS sanitized before being displayed. #TINY-10286

Commits

• 403c51d TINY-10226: Preparation for 6.7.2 TinyMCE release (#9111)
• 8710894 TINY-10268: manage list inside an li surrounded by 2 not li elements (#...
• 95080b4 TINY-10263: We now keep getModifierState properly accessible. (#9087) (#9108)
• 9924746 TINY-10213: manage li with a list and then other elements (#9035) (#9107)
• 01999ec TINY-10304: Fixed broken non-editable root advlist test (#9091) (#9104)
• 5a391a0 TINY-10249: avoid flickering when remove and put the editor back (#9064) (#9102)
• cb4d48d TINY-10164: Update changelog heading and package.json version for 6.7.1 relea...
• 1365f04 TINY-10164: Prepare for 6.7.1 Community Release (#9089)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #49.