Update CVE-2025-58767 to include Ruby ~> 3.2.10 and ~> 3.3.10 (#946)

Author: G-Rath

rubies/ruby/CVE-2025-58767.yml

@@ -13,12 +13,13 @@ description: |
   The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.
 
 patched_versions:
+  - "~> 3.2.10"
+  - "~> 3.3.10"
   - ">= 3.4.8"
 related:
   url:
     - https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rexml/CVE-2025-58767.yml
     - https://www.cve.org/CVERecord?id=CVE-2025-58767
     - https://www.ruby-lang.org/en/news/2025/12/17/ruby-3-4-8-released/
     - https://bugs.ruby-lang.org/issues/21632
-notes: |
-  Ruby 3.3 and 3.2 have PRs to backport the fix but new versions haven't been released yet.
+    - https://github.com/ruby/ruby/pull/14796