Crit­i­cal up­date: Log4J in­jec­tion bug

To all our users:

We were in­formed about a po­ten­tial se­cu­ri­ty is­sue with Log4J:

Watch the ex­pla­na­tion in this YouTube video

Please ad­just your Log4J de­pen­den­cy ver­sions ac­cord­ing­ly, to avoid any risk. No new Atomikos re­lease needs to be in­stalled since this is iso­lat­ed to a 3rd par­ty li­brary de­pen­den­cy marked as op­tion­al, so it is not pulled in tran­si­tive­ly. The API has been sta­ble so it works with the lat­est se­cure Log4J ver­sions at the time of pub­lish­ing.