fix(deps): Update dependency Jinja2 to v3.1.6 [SECURITY] (#290)

This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [Jinja2](https://redirect.github.com/pallets/jinja) ([changelog](https://jinja.palletsprojects.com/changes/)) | patch | `==3.1.5` -> `==3.1.6` |

### GitHub Vulnerability Alerts

#### [CVE-2025-27516](https://redirect.github.com/pallets/jinja/security/advisories/GHSA-cpwx-vrp4-4pq7)

An oversight in how the Jinja sandboxed environment interacts with the `|attr` filter allows an attacker that controls the content of a template to execute arbitrary Python code.

To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications which execute untrusted templates.

Jinja's sandbox does catch calls to `str.format` and ensures they don't escape the sandbox. However, it's possible to use the `|attr` filter to get a reference to a string's plain format method, bypassing the sandbox. After the fix, the `|attr` filter no longer bypasses the environment's attribute lookup.

---

### Release Notes

<details>
<summary>pallets/jinja (Jinja2)</summary>

### [`v3.1.6`](https://redirect.github.com/pallets/jinja/blob/HEAD/CHANGES.rst#Version-316)

[Compare Source](https://redirect.github.com/pallets/jinja/compare/3.1.5...3.1.6)

Released 2025-03-05

-   The `|attr` filter does not bypass the environment's attribute lookup,
    allowing the sandbox to apply its checks. :ghsa:`cpwx-vrp4-4pq7`

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xODguMSIsInVwZGF0ZWRJblZlciI6IjM5LjE4OC4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJhdXRvbWVyZ2UiLCJzZWN1cml0eSJdfQ==-->

Author: cq-bot

setup.py

@@ -16,7 +16,7 @@
     "grpcio==1.70.0",
     "grpcio-tools==1.70.0",
     "iniconfig==2.0.0",
-    "Jinja2==3.1.5",
+    "Jinja2==3.1.6",
     "MarkupSafe==3.0.2",
     "numpy==2.2.3",
     "packaging==24.2",