fix(deps): link docs/esm to workspace to upgrade express and eliminate vulnerable path-to-regexp

Author: taeold