Pin vulnerability files for consistent test results

This MR fixes broken tests in the no_dind-FREEZE branch by making the following changes:

• pin BUNDLER_AUDIT_ADVISORY_DB_REF_NAME for bundler-audit-dependency_scanning
• pin RETIREJS_JS_ADVISORY_DB and RETIREJS_NODE_ADVISORY_DB for retire-js-dependency_scanning
• update severity levels in gemnasium qa expectation