Fixing a Remote Code Execution Vulnerability in EJS

A high-severity remote code execution vulnerability was found in the `EJS` npm package. Here's how it works, and how to fix it.