Update security-code-scan analyzer to latest version

Our security-code-scan analyzer uses a tool provided by Microsoft to detect vulnerabilities in .Net projects. We're currently using v3.0.0 of this tool. However, v3.3.0 has shipped. We need to update the analyzer to use the newer version.

v3.3.0 release notes

• Better C# 7 handling
• CSRF analyzer configuration made more flexible.
• Configuration file schema version has changed to 2.0, so if you had custom config settings, you’ll need to adjust to the schema and bump your file name from config-2.0.yml to config-2.1.yml or change from Version: 2.0 to Version: 2.1 if it was added to a project.
• Bug fixes.

v3.2.0 release notes

Bugfix release.

• Fixes using SCS as nuget.
• One click code fixes were removed until a separate assembly is created.

v3.1.0 release notes

The release adds support for VS2019 and bug fixes. Also:

• Adds multiple XSS sinks for WebForms.
• Changes in SCS configuration file doesn’t require to restart Visual Studio anymore.
• Warnings are suppressed for generated code.
• Adds .NET Core cookie analyzer.