REXML DoS vulnerability (CVE-2025-58767)

REXML versions ≥ 3.3.3 and < 3.4.2 are vulnerable to a denial-of-service attack, tracked as CVE-2025-58767.

Puppet Core version 8.16.0 looks like it has the relevant updates. Please can we get similar fixes for the Puppet Server and Agent packages?