Because Yarn projects allow for multiple versions of the same library, you cannot override a vulnerable library by adding the appropriate version directly to the configuration file.
To complete this task:
Run this command to install
yarn add [email protected]
Run this command and, when prompted, choose the latest version:
yarn install --flat
After completing these steps, build, test, and rescan your project to ensure the fix succeeded.