Draft: SASTBot: Monthly dependency updates for %15.5

What does this MR do?

• upgrade Spotbugs version [4.7.1 => 4.7.2]
• upgrade github.com/urfave/cli/v2 version [v2.11.1 => v2.16.3]

Note: Changelog is autogenerated by SASTBot.

What are the relevant issue numbers?

• 15.4 Planning - Static Analysis (gitlab-org/gitlab#370389 - closed)

Does this MR meet the acceptance criteria?

• Changelog entry added
• Documentation created/updated for GitLab EE, if necessary
• Documentation created/updated for this project, if necessary
• Documentation reviewed by technical writer or follow-up review issue created
• Tests added for this feature/bug
• Job definition updated, if necessary
  • Auto-DevOps template
  • Job definition example
  • CI Templates
• Conforms to the code review guidelines
• Conforms to the Go guidelines
• Security reports checked/validated by reviewer