HBASE-29651 Bump jruby to 9.4.14.0 to fix multiple CVEs (apache#7405)

This change fixes the following list of CVEs:
- **CVE-2025-43857**: Fixed in JRuby 9.4.13.0
- **CVE-2025-27219**: Fixed in JRuby 9.4.14.0
- **CVE-2025-27220**: Fixed in JRuby 9.4.14.0

Signed-off-by: Nihal Jain <nihaljain@apache.org>
Signed-off-by: Pankaj Kumar <pankajkumar@apache.org>

(cherry picked from commit 305951e)

Author: xavifeds8

pom.xml

@@ -595,7 +595,7 @@
     <servlet.api.version>3.1.0</servlet.api.version>
     <wx.rs.api.version>2.1.1</wx.rs.api.version>
     <tomcat.jasper.version>9.0.110</tomcat.jasper.version>
-    <jruby.version>9.3.15.0</jruby.version>
+    <jruby.version>9.4.14.0</jruby.version>
     <junit.jupiter.version>5.13.4</junit.jupiter.version>
     <junit.vintage.version>5.13.4</junit.vintage.version>
     <hamcrest.version>1.3</hamcrest.version>
@@ -624,8 +624,8 @@
     <jamon-runtime.version>2.4.1</jamon-runtime.version>
     <jettison.version>1.5.4</jettison.version>
     <!--Make sure these joni/jcodings are compatible with the versions used by jruby-->
-    <joni.version>2.2.1</joni.version>
-    <jcodings.version>1.0.58</jcodings.version>
+    <joni.version>2.2.5</joni.version>
+    <jcodings.version>1.0.63</jcodings.version>
     <spy.version>2.12.3</spy.version>
     <bouncycastle.version>1.81</bouncycastle.version>
     <skyscreamer.version>1.5.1</skyscreamer.version>