Arbitrary Code Injection via pdfjs-dist

Hi! We’re using @atlaskit/editor-markdown-transformer in one of our projects and it’s currently introducing a following vulnerability:

Via following package:
└─┬ @atlaskit/editor-confluence-transformer@8.12.2
└─┬ @atlaskit/editor-common@88.11.0
└─┬ @atlaskit/media-viewer@48.7.3
└── pdfjs-dist@2.16.105

Is it possible to ask the team to update the dependency to get rid of this finding?

Thanks!