Update request - Depends on vulnerable version of xml2js

Current version depends on a vulnerable version of xml2js.  Please resolve and issue an update.

xml2js  <0.5.0
Severity: moderate
xml2js is vulnerable to prototype pollution - https://github.com/advisories/GHSA-776f-qx25-q3cc
No fix available
node_modules/tourcms/node_modules/xml2js
  tourcms  *
  Depends on vulnerable versions of xml2js
  node_modules/tourcms