XML parsers should not be vulnerable to XXE attacks

From SonarQube analysis, there are several place in iDempiere code base that’s susceptible to the XML external entity injection (XXE) security vulnerability.

SonarQube recommended fix is to disable DTD support.

However, this is not 100% backward compatible as the application will raise exception processing XML file that has DTD declaration.