add fix

Author: nahsra

src/main/java/com/acme/XXEVulnFixed.java

@@ -89,6 +89,8 @@ public static Document withDomButDisabled(String xml)
   public static void withReaderFactory(String xml)
       throws IOException, SAXException {
     XMLReader reader = XMLReaderFactory.createXMLReader();
+    reader.setFeature("http://xml.org/sax/features/external-general-entities", false);
+    reader.setFeature("http://xml.org/sax/features/external-parameter-entities", false);
     reader.parse(new InputSource(new StringReader(xml)));
   }
 }