Add sanitization for SVG uploads and enhance security headers for asset responses

- Introduced SVG sanitization using `dompurify` to prevent malicious content.
- Updated tests to validate SVG sanitization with various scenarios.
- Enhanced response headers for assets, adding CSP and nosniff for SVGs.
- Adjusted UI to better clarify supported file types for logo uploads.
- Updated dependencies to include `jsdom` and `dompurify`.

docs/api/companies.md

@@ -58,7 +58,7 @@ Valid image content types:
 - `image/jpg`
 - `image/webp`
 - `image/gif`
-- `image/svg+xml` (`.svg`)
+- `image/svg+xml`
 
 ## Archive Company