False positives for org.owasp.antisamy:antisamy CVE-2023-49093

Similar to !26641 (merged)

CVE-2023-49093 doesn't apply to maven/org.owasp.antisamy/antisamy since net.sourceforge.htmlunit:htmlunit is not a direct dependency of any of its versions