[Security] Bump loofah from 2.2.3 to 2.3.1 (#12203)

Bumps [loofah](https://github.com/flavorjones/loofah) from 2.2.3 to 2.3.1. **This update includes a security fix.** - [Release notes](https://github.com/flavorjones/loofah/releases) - [Changelog](https://github.com/flavorjones/loofah/blob/master/CHANGELOG.md) - [Commits](https://github.com/flavorjones/loofah/compare/v2.2.3...v2.3.1 ) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

[Security] Bump loofah from 2.2.3 to 2.3.1 (#12203)
237293fd · dependabot-preview[bot] · Yamagishi Kazutoshi · 6bee7b82 · 237293fd
Commit 237293fd authored 5 years ago by dependabot-preview[bot] Committed by Yamagishi Kazutoshi 5 years ago
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -184,7 +184,7 @@ GEM
    connection_pool (2.2.2)
    crack (0.4.3)
      safe_yaml (~> 1.0.0)
-    crass (1.0.4)
+    crass (1.0.5)
    css_parser (1.7.0)
      addressable
    debug_inspector (0.0.3)
@@ -356,7 +356,7 @@ GEM
      activesupport (>= 4)
      railties (>= 4)
      request_store (~> 1.0)
-    loofah (2.2.3)
+    loofah (2.3.1)
      crass (~> 1.0.2)
      nokogiri (>= 1.5.9)
    mail (2.7.1)