Bump commerce-clean-api module

Background
There is a quantity tampering vulnerability in OrderEntry class
in com.traveloka.pay:commerce-clean-api module.
We have implemented the fix for this in the latest jar release.

Action Needed