[MEDIUM] OroCommerce get-totals-for-checkout API endpoint returns unwanted data

PKSA-8pmc-yd6d-ggv8 CVE-2023-32065 GHSA-88g2-xgh9-4ph2

Affected package: oro/commerce

Affected version: >=5.1.0,<5.1.1|>=5.0.0,<5.0.11|>=4.2.0,<=4.2.10

Reported by:
GitHub