[CVE] Remove storybook package to fix CVE-2021-42740 and CVE-2021-24033

[ZilongX]

Signed-off-by: Zilong Xia [email protected]

Description

• This PR is to remove the storybook package from 1.x branch referencing similar efforts made in 2.0.0 Removes storybook package and related code #1172
• Previous auto backport failed and this one aims to apply the backporting manually with cherry-pick
• This also resolves CVE-2021-42740 and CVE-2021-24033

Issues Resolved

Resolves #1171
Resolves #1055

Check List

• All tests pass
  • yarn test:jest
  • yarn test:jest_integration
  • yarn test:ftr
• New functionality includes testing.
• New functionality has been documented.
• Update CHANGELOG.md
• Commits are signed per the DCO using --signoff

[ZilongX]

Added a change item under 🛠 Maintenance in CHANGELOG as well since the removal of storybook may be in bigger scope than just to get the CVEs fixed IMHO.

[kavilla]

Thanks for doing this @ZilongX.

For others, we determined this is NOT a breaking change because storybook did work since the fork.

[opensearch-trigger-bot]

The backport to 1.3 failed:

The process '/usr/bin/git' failed with exit code 1

To backport manually, run these commands in your terminal:

# Fetch latest updates from GitHub
git fetch
# Create a new working tree
git worktree add .worktrees/backport-1.3 1.3
# Navigate to the new working tree
cd .worktrees/backport-1.3
# Create a new branch
git switch --create backport/backport-2660-to-1.3
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x --mainline 1 1c50eeed0e1c19da96715b1236a54ac838667f02
# Push it to GitHub
git push --set-upstream origin backport/backport-2660-to-1.3
# Go back to the original working tree
cd ../..
# Delete the working tree
git worktree remove .worktrees/backport-1.3

Then, create a pull request where the base branch is 1.3 and the compare/head branch is backport/backport-2660-to-1.3.