SpringBoot spring-boot-starter-security does not update spring-security dependencies to patch CVE-2022-31692

Context

Since the anouncement of the CVE-2022-31692, spring-boot-starter-security does not have update the two dependencies of spring-security: spring-security-config and spring-security-web. It is always the 5.7.4 version which do not include the patch for the CVE which is publish in spring-security 5.7.5 version SpringBoot spring-boot-starter-security does not update spring-security dependencies to patch CVE-2022-31692

Comment From: bclozel

Closing as a duplicate of #32983