Fix dependencies and CVE vulnerabilities

* Remove `validation-api` dependency because it is provide by `hibernate-validator` and violates classed duplication.
* Bump `spring` version because of CVE vulnerability.
* Bump `commons-beanutils` version because of `CVE-2019-10086` vulnerability.

Author: vadeg

pom.xml

@@ -61,7 +61,7 @@
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
         <maven.compiler.source>1.8</maven.compiler.source>
         <maven.compiler.target>1.8</maven.compiler.target>
-        <spring.version>5.1.8.RELEASE</spring.version>
+        <spring.version>5.2.5.RELEASE</spring.version>
         <postgresql.version>42.2.6</postgresql.version>
     </properties>
 
@@ -89,19 +89,14 @@
         <dependency>
             <groupId>commons-beanutils</groupId>
             <artifactId>commons-beanutils</artifactId>
-            <version>1.9.3</version>
+            <version>1.9.4</version>
             <exclusions>
                 <exclusion>
                     <groupId>commons-logging</groupId>
                     <artifactId>commons-logging</artifactId>
                 </exclusion>
             </exclusions>
         </dependency>
-        <dependency>
-            <groupId>javax.validation</groupId>
-            <artifactId>validation-api</artifactId>
-            <version>2.0.1.Final</version>
-        </dependency>
         <dependency>
             <groupId>org.hibernate.validator</groupId>
             <artifactId>hibernate-validator</artifactId>