Restore CVE in table output

What does this MR do?

The CVE ID is no longer displayed in Container Scanning analyzer table output since we upgraded to the security report schema version 15.

This MR restores that information and add unit tests to ensure the output stays consistent when we modify the report data and structure.

What are the relevant issue numbers?

gitlab-org/gitlab#427506 (closed)

Does this MR meet the acceptance criteria?

• Changelog trailer added
• Documentation created/updated for GitLab EE, if necessary
• Documentation created/updated for this project, if necessary
• Documentation reviewed by technical writer or follow-up review issue created
• Tests added for this feature/bug
• Job definition updated, if necessary
  • Auto-DevOps template
  • Job definition example
  • CI Templates
• Conforms to the code review guidelines
• Conforms to the Go guidelines
• Security reports checked/validated by reviewer