Bump tinymce from 5.10.9 to 8.0.2 in the npm_and_yarn group across 1 directory

[dependabot]

Bumps the npm_and_yarn group with 1 update in the / directory: tinymce.

Updates tinymce from 5.10.9 to 8.0.2

Changelog

Sourced from tinymce's changelog.

8.0.2 - 2025-08-14

Fixed

• Reverted split button design change. #TINY-12593

8.0.1 - 2025-07-28

Fixed

• Updated missing changelogs. #TINY-12581

8.0.0 - 2025-07-23

Added

• New pageUid property on the tinymce global instance. #TINY-12021
• New editorUid property on editor instances. #TINY-12021
• New UserLookup API to provide consistent user management and fetching/caching user information across TinyMCE plugins. #TINY-11974
• New toolbar icons for suggested edits plugin. #TINY-12070
• New crossorigin option that sets the crossorigin attribute on scripts loaded by the editor. #TINY-12228
• New allow_html_in_comments option to allow HTML like contents inside comment data. #TINY-12220
• New list_max_depth option that limits the maximum list indent depth. #TINY-11937
• Support for TinyMCE 8 license keys and license key manager. #TINY-12001

Improved

• Focus is now restored to a dialog after closing an alert, confirmation or another dialog. #TINY-12038
• Resize handles are more accessible with role and aria-valuetext attributes. #TINY-11421
• Toolbar drawer now closes when the editor loses focus. #TINY-12125
• The translate API now automatically replaces three dots in a row with an ellipsis character. #TINY-12155
• Tooltips can now be closed by pressing the escape key. #TINY-12054
• Instructions on how to navigate the color swatch, image select and insert table widget are now announced by the screen readers. #TINY-12189
• When editor.resetContent() is used, the resulting SetContent event now has the initial flag set in the event arguments. #TINY-12146
• Updated Image plugin decorative image check to align with accessibility standard #TINY-12545

Changed

• DomParser no longer tries to fix some nodes when parsed with a context. #TINY-11927
• Split buttons are now rendered as separate action and chevron buttons. #TINY-8665
• Moved essential parts of the lists plugin into core. #TINY-12121
• Cut action now uses the editor delete implementation instead of the native execCommand('Delete') function. #TINY-12171
• Comments with HTML like content, attributes with HTML like values, elements with HTML Comment like textContent are no longer retained while content sanitization is active. #TINY-12056
• Added space to promotion message for ease of reading. #TINY-12271

Deprecated

• Deprecated skipFocus option for ToggleToolbarDrawer command. To skip focus use skip_focus option. #TINY-12044
• Deprecated 'editor.selection.setContent' method. #TINY-11692

Removed

• Removed undocumented documentBaseUrl property from Editor instances. documentBaseURI is the supported property. #TINY-12182

Fixed

• Long tooltips could overflow narrow browser windows. #TINY-11884
• Pressing Tab to create a new row in tables with a non-editable final row would freeze the editor. #TINY-12018

... (truncated)

Commits

• 81f3a81 TINY-12577: Changelog prep 8.0.2 (#10534)
• 143f86b TINY-12247: Fix flaky tests (#10520)
• 3dc5192 TINY-12106: Bump patch version
• e7d6530 TINY-12585: Update links (#10496)
• 43fb6f1 TINY-12581: Update changelog for release (#10492)
• 34201bb TINY-11879: Merge changelog
• 48f3498 TINY-11879: Bump version post-release
• 9accb36 TINY-12545: Update image plugin decorative image check to align with a11y plu...
• 458e83b TINY-12537: Revert changes from EPIC-233 (#10474)
• db1d73e TINY-12503: Improve license key manager load/init behaviour (#10466)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.