Consider dropping the support of sorting the vulnerabilities by state

The following discussion from !76220 (merged) should be addressed:

• @minac started a discussion: (+1 comment)

  thought (non-blocking): I have the same performance concern on this one with sorting by the report type though sorting by the state might be useful.