chore: bump next from 14.1.4 to 14.2.7

[dependabot]

Bumps next from 14.1.4 to 14.2.7.

Release notes

Sourced from next's releases.

v14.2.7

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Revert "chore: externalize undici for bundling" (#65727)
• Refactor internal routing headers to use request meta (#66987)
• fix(next): add cross origin in react dom preload (#67423)
• build: upgrade edge-runtime (#67565)
• GTM dataLayer parameter should take an object, not an array of strings (#66339)
• fix: properly patch lockfile against swc bindings (#66515)
• Add deployment id header for rsc payload if present (#67255)
• Update font data (#68639)
• fix i18n data pathname resolving (#68947)
• pages router: ensure x-middleware-cache is respected (#67734)
• Fix bad modRequest in flight entry manifest #68888
• Reject next image urls in image optimizer #68628
• Fix hmr assetPrefix escaping and reuse logic from other files #67983

Credits

Huge thanks to @​kjugi, @​huozhi, @​ztanner, @​SukkaW, @​marlier, @​Kikobeats, @​syi0808, @​ijjk, and @​samcx for helping!

v14.2.6

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Ensure fetch cache TTL is updated properly (#69164)

v14.2.5

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• avoid merging global css in a way that leaks into other chunk groups (#67373)
• Fix server action edge redirect with middleware rewrite (#67148)
• fix(next): reject protocol-relative URLs in image optimization (#65752)
• fix(next-swc): correct path interop to filepath for wasm (#65633)
• Use addDependency to track metadata route file changes (#66714)
• Fix noindex is missing on static not-found page (#67135)
• perf: improve retrieving versionInfo on Turbo HMR (#67309)
• fix(next/image): handle invalid url (#67465)
• fix(next): initial prefetch cache not set properly with different search params (#65977)
• fix: Backport class properties fix (#67377)
• Upgrade acorn (#67592)

Misc

• Log stdio for pull-turbo-cache script (#66759)
• Ensure turbo is setup when building in docker (#66804)

... (truncated)

Commits

• a1c3a03 v14.2.7
• d46ab2c Fix hmr assetPrefix escaping and reuse logic from other files (#67983)
• d11cbc9 Reject next image urls in image optimizer (#68628)
• 575385e Fix bad modRequest in flight entry manifest (#68888)
• 9ecf2e8 update turbopack build manifest
• 325dc4b pages router: ensure x-middleware-cache is respected (#67734)
• d3021b6 update playwright interface
• 5e6f511 fix i18n data pathname resolving (#68947)
• dd32e0f Update font data (#68639)
• 2f7fa98 Add deployment id header for rsc payload if present (#67255)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.