update commons-fileupload2-2.0.0-M1 to commons-fileupload2-servlet5-2…

[HiddenAlx]

fixes issue #51
additionally fixes CVE-2025-48976
Update commons-fileupload2 v2.0.0-M1 to commons-fileupload2-jakarta-servlet5 v2.0.0-M4. Versions before M4 has CVE-2025-48976 vulnerability.
I decided to upgrade commons-fileupload2 to commons-jakarta-servlet5 instead of jakarta-servlet6 because the readme states that Struts v1.5 only supports Servlet 5 specification.
Additionally, I had to upgrade commons-io to version 2.19.