JMIX 2.7.1 - Did we vulnerable to CVE-2025-55182?

Hi JMIX Team,

I would like to quick check if JMIX is vulnerable to CVE-2025-55182 ?

I not sure if JMIX is using Hilla somewhere; Hilla is using React. Inside Vaadin Document, it doesn’t mention what React version they are using.

Regards,
CK