fix: patch CVE-2025-55182 React2Shell vulnerability

Update React to 19.0.3 and Next.js to 15.5.9 to address critical
remote code execution vulnerability in React Server Components.

Author: Tanner Osterkamp