fix: harden SVG sanitization against XSS vectors

[TanCodeX]

Description

Fixes #1897

Replaces the existing regex-based SVG sanitization in page.tsx with a more secure sanitization approach.

Changes

• Removed reliance on regex-only sanitization for SVG content.
• Added support for sanitizer-based SVG filtering with an allowlist of safe elements and attributes.
• Prevented common SVG XSS vectors, including:
  • foreignObject
  • xlink:href abuse
  • unsafe data: URIs
  • CSS url() injections
  • inline event handlers
• Improved overall SVG rendering security through defense-in-depth practices and safer content handling.

Pillar

• 🎨 Pillar 1 — New Theme Design
• 📐 Pillar 2 — Geometric SVG Improvement
• 🕐 Pillar 3 — Timezone Logic Optimization
• 🛠️ Other (Bug fix, refactoring, docs)

Checklist before requesting a review:

• I have read the CONTRIBUTING.md file.
• I have tested these changes locally (localhost:3000/api/streak?user=YOUR_USERNAME).
• I have run npm run format and npm run lint locally and resolved all errors (CI will fail otherwise).
• My commits follow the Conventional Commits format (e.g., feat(themes): ..., fix(calculate): ...).
• I have updated README.md if I added a new theme or URL parameter.
• I have started the repo.
• I have made sure that i have only one commit to merge in this PR.
• The SVG output matches the CommitPulse "premium quality" aesthetic standard (no raw elements, smooth animations, correct fonts).
• (Recommended) I joined the CommitPulse Discord community for contributor discussions, mentorship, and faster PR support.

[vercel]

@TanCodeX is attempting to deploy a commit to the jhasourav07's projects Team on Vercel.

A member of the Team first needs to authorize it.

[github-actions]

🎉 Congratulations @TanCodeX! Your PR has been successfully merged. 🚀

Thank you for contributing to CommitPulse. Your work helps us build a better tool for the community.

⚠️ Important for GSSoC Contributors:
You are strictly advised to join our Discord Server as it is mandatory for all GSSoC participants. All important announcements, point claims, and community discussions happen there.

Keep building! 💻✨