Fix two critical vulnerabilities and a license issue
Fixed two critical vulnerabilities and excluding Saxon since some corporations may not be comfortable with using the MPL 1.0 license
Fixed two critical vulnerabilities and excluding Saxon since some corporations may not be comfortable with using the MPL 1.0 license