Cleanup and upgrade dependencies to fix various CVEs

[pavelhoral]

This PR fixes issues with incorrect dependencies being on classpath. Ideally this should have been done before releasing RC1, but well... here we are.

I have reviewed all dependencies in the top-level POM, ordered them alphabetically and marked few of them as deprecated. Everything seems to be working... major changes are:

• most dependencies are at their newest versions
• Javax artifacts were switched to Jakarta artifacts (getting ready to switch to Jakarta packages :))
  • This was done in Wren:AM before a similar change had been done in Wrensec Commons, so a similar activity needs to be done there as well. There is a dedicated section in parent POM to exclude transitive Javax stuff from Wrensec Commons.
• introduced monkey patch for JAXB1 binary incompatibility regarding com.sun.xml.bind.Messages class
  • I did try to migrate that to JAXB2 but that is unfortunately not possible without major rewrite.
• commented out few unnecessary dependencies (will be removed in the future)

There are still few steps that should be considered after merging this PR:

• potentially uploading Restlet JARs to JFrog as they are currently unsigned
  • see Synchronize with central Maven repository restlet/restlet-framework-java#481
• go through various XXX/TODO/FIXMEs inside pom.xml files
  • check whether marked configuration is still needed (mainly talking about transitive exlusions)
  • upgrade maven plugin versions
• perform at least a simple smoke tests for SAML features (this is one area I have not covered)

[karelmaxa]

LGTM, great job.