Update mbedtls to 3.5.2

There's a CVE (CVE-2024-23775) up to and including 3.5.1 which is a buffer overflow in mbedtls_x509_set_extension():
https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2024-01-2/