Fix GHSA-7r86-cg39-jmmj (backport #9037) [release/4.11.x] (#9041)

Co-authored-by: Nam Le <50554904+hl662@users.noreply.github.com>

Author: mergify[bot]

common/config/rush/pnpm-config.json

@@ -7,12 +7,16 @@
   },
   "globalOverrides": {
     "cross-spawn": "^7.0.5", // https://github.com/advisories/GHSA-3xgq-45jj-v275 npm-run-all>cross-spawn
+    "@microsoft/api-extractor>minimatch": "^10.2.3", // https://github.com/advisories/GHSA-7r86-cg39-jmmj and https://github.com/advisories/GHSA-23c5-xmqv-rm74
     "elliptic": "^6.6.1", // https://github.com/advisories/GHSA-vjh7-7g9h-fjfh crypto-browserify>browserify-sign>elliptic
     "form-data": "^4.0.4", // https://github.com/advisories/GHSA-fjxv-7rqg-78g4 azurite>@azure/ms-rest-js>form-data
     "playwright": "~1.56.1", // https://github.com/advisories/GHSA-7mvr-c777-76hp @itwin/oidc-signin-tool>@playwright/test
     "qs": "^6.14.1", // http://github.com/advisories/GHSA-6rw7-vpxm-498p @itwin/certa>express>qs
     "browserslist": "latest", // https://github.com/browserslist/update-db#readme
     "fast-xml-parser": "^5.3.6", // https://github.com/advisories/GHSA-jmr7-xgp7-cmfj @google-cloud/storage > fast-xml-parser
+    "minimatch@<3.1.4": "^3.1.4", // https://github.com/advisories/GHSA-7r86-cg39-jmmj and https://github.com/advisories/GHSA-23c5-xmqv-rm74
+    "minimatch@>=5.0.0 <5.1.8": "^5.1.8", // https://github.com/advisories/GHSA-7r86-cg39-jmmj and https://github.com/advisories/GHSA-23c5-xmqv-rm74
+    "minimatch@>=9.0.0 <9.0.7": "^9.0.7", // https://github.com/advisories/GHSA-7r86-cg39-jmmj and https://github.com/advisories/GHSA-23c5-xmqv-rm74
     "glob@>=11.0.0 <11.1.0": "^11.1.0", // https://github.com/advisories/GHSA-5j98-mcp5-4vw2 cpx2>glob
     "axios": "^1.13.5" // https://github.com/advisories/GHSA-43fc-jf86-j433
   },