[Security] Bump next from 9.5.3 to 9.5.4 in /frontend

[dependabot-preview]

Bumps next from 9.5.3 to 9.5.4.

Release notes

Sourced from next's releases.

v9.5.4-canary.25

Example Changes

• fix typo: #17653

Misc Changes

• Update release stats workflow step to restore cache: #17656

Credits

Huge thanks to @futantan for helping!

v9.5.4-canary.24

Core Changes

• Remove left-over api-utils method: #17595
• Add warning when exporting with custom routes: #17538
• Normalize optional catch-all fallback: true page params: #17551
• Update to use hasNextSupport for custom-routes in next export check: #17630

Documentation Changes

• Mention required version for global CSS imports in node_modules: #17506
• Mention favicon.ico in static file serving docs.: #17540
• Add note about priority to rewrites docs: #17535
• [docs] Fix typo Next.js -> TypeScript: #17561
• Add missing introductory exportPathMap purpose description: #17444
• Add docs on how to migrate from Gatsby.: #17491
• Update migrating from Gatsby docs.: #17636
• change anonymous functions to named in docs examples: #17510

Example Changes

• Fixed minor typo: #17456
• with-google-analytics-amp needs in Document component: #17462
• update README for vercel.app, stream.new: #17539
• Improve formatting in examples: #17571
• Fixes #16431: #17610

Misc Changes

• Update release stats workflow: #17533
• Update release stats workflow: #17580
• test(create-next-app): increase coverage: #17507

Credits

Huge thanks to @plug-n-play, @philihp, @lfades, @leerob, @dylanjha, @ijjk, @Kerumen, @rdimaio, @jorisw, @zerbinidamata, @jamesgeorge007, and @Jashnm for helping!

Commits

• 6588108 v9.5.4
• 7108567 v9.5.4-canary.25
• 5d79a8c Update workflow step to restore cache (#17656)
• 4c38e3e fix typo (#17653)
• 241f38e v9.5.4-canary.24
• 7dec911 change anonymous functions to named in docs examples (#17510)
• 1659e4d Update migrating from Gatsby docs. (#17636)
• 06a8b1a Add docs on how to migrate from Gatsby. (#17491)
• 04234cc Update to use hasNextSupport for custom-routes in next export check (#17630)
• 742f5d9 test(create-next-app): increase coverage (#17507)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .github/dependabot.yml file in this repo:

• Update frequency
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[vercel]

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/enricoschaaf/template/f2gwonbm9
✅ Preview: Failed

[Deployment for a2674d0 failed]

[dependabot-preview]

One of your CI runs failed on this pull request, so Dependabot won't merge it.

• Vercel

Dependabot will still automatically merge this pull request if you amend it and your tests pass.

[dependabot-preview]

We've just been alerted that this update fixes a security vulnerability:

Sourced from The GitHub Security Advisory Database.

Open Redirect in Next.js versions

Impact

• Affected: Users of Next.js between 9.5.0 and 9.5.3
• Not affected: Deployments on Vercel (https://vercel.com) are not affected
• Not affected: Deployments using next export

We recommend everyone to upgrade regardless of whether you can reproduce the issue or not.

Patches

... (truncated)

Affected versions: [">= 9.5.0 < 9.5.4"]