fix: package.json & package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-BODYPARSER-7926860
- https://snyk.io/vuln/SNYK-JS-EXPRESS-7926867
- https://snyk.io/vuln/SNYK-JS-SEND-7926862
- https://snyk.io/vuln/SNYK-JS-SERVESTATIC-7926865

package.json

@@ -26,7 +26,7 @@
     "aws4": "^1.12.0",
     "axios": "^1.6.2",
     "bluebird": "^3.7.2",
-    "body-parser": "^1.20.2",
+    "body-parser": "^1.20.3",
     "cloudinary": "^1.41.0",
     "compression": "^1.7.4",
     "cookie-parser": "^1.4.6",
@@ -34,7 +34,7 @@
     "csrf": "^3.1.0",
     "dinero.js": "^1.9.1",
     "dotenv": "^16.3.1",
-    "express": "^4.18.2",
+    "express": "^4.21.0",
     "firebase-admin": "^11.11.0",
     "graphql": "^16.8.1",
     "graphql-request": "^6.1.0",