webhook-listen: bump regex requirement
This avoids RUSTSEC-2022-0013 which describes a denial-of-service in the
regex
crate when provided with certain expressions. As regexes might
be provided by external code here, this must be updated to avoid the
problem.