SpringBoot Update tomcat version fixes DOS vulnerability

This update fix the vulnerability found in tomcat https://security.snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5953331

Comment From: pivotal-cla

@sreekesh93 Please sign the Contributor License Agreement!

Click here to manually synchronize the status of this Pull Request.

See the FAQ for frequently asked questions.

Comment From: pivotal-cla

@sreekesh93 Thank you for signing the Contributor License Agreement!

Comment From: bclozel

We're very much aware of this, thank you. 10.1.14 is the wrong version to pick anyway as it shipped with several regressions, so our semi-automated process will pick 10.1.15 instead (see #37812).

As mentioned in our issue template:

You DO NOT need to raise an issue for a managed dependency version upgrade as there's a semi-automatic process for checking managed dependencies for new versions before a release.

We will perform upgrades matching our 3rd party upgrade policy. If this is an urgent matter for you, there is no need to wait for us releasing as you can use a Gradle or Maven build property to override the library version. All version properties are listed in the reference documentation appendix.