Upgrade urllib3 to 2.6.3 to resolve high Severity dependabot alert

[jsjiang]

Decompression-bomb safeguards bypassed when following HTTP redirects (streaming API) #191
https://github.com/CDLUC3/ezid/security/dependabot/191
Severity: High 8.9/ 10

Pull request:
#982

[jsjiang]

• Checked out branch dependabot/pip/urllib3-2.6.3 to my local development env
• validated changes
• Installed dependencies
• created tag v3.3.23_rc0 for testing
• tested on ezid-stg: functional and UI tests look good.

poetry check --lock
All set!

pip install .