Is neosematics affected by CVE-2022-42889?

[senyahnoj]

We scanned neosemantics plugin version 4.4.0.3 and it reported a CVE vulnerability CVE-2022-42889

There is a caveat though that the "vulnerability is only applicable when variable string interpolation is being performed on untrusted input to the StringSubstitutor class".

Would anyone be able to confirm whether this is applicable for n10s?