build(deps): bump web-vitals from 4.2.4 to 5.1.0 in /test-app

[dependabot[bot]]

Bumps web-vitals from 4.2.4 to 5.1.0.

Changelog

Sourced from web-vitals's changelog.

v5.1.0 (2025-07-31)

• Register visibility-change early (#637)
• Only finalize LCP on user events (isTrusted=true) (#635)
• Fallback to default getSelector if custom function is null or undefined (#634)

v5.0.3 (2025-06-11)

• Remove visibilitychange event listeners when no longer required (#627)

v5.0.2 (2025-05-29)

• Handle layout shifts with no sources (#623)

v5.0.1 (2025-05-13)

• Fix missing FCP and LCP for prerendered pages (#621)

v5.0.0 (2025-05-07)

[!NOTE] See the upgrading to v5 guide for a complete list of all API changes in version 5.

• [BREAKING] Remove the deprecated onFID() function (#519)
• [BREAKING] Change browser support policy to Baseline Widely available (#525)
• [BREAKING] Sort the classes that appear in attribution selectors to reduce cardinality (#518)
• Extend INP attribution with extra LoAF information: longest script and buckets (#592)
• Add support for generating custom targets in the attribution build (#585)
• Support multiple calls to onINP() with different config options (#583)
• Use visibility-state performance entries (#612)
• Ensure idle callbacks don't run twice (#541) and (#548)
• Cap nextPaintTime at processingStart (#540) and (#546)
• Cap INP breakdowns to INP duration (#528)
• Cap LCP load duration to LCP time (#527)

Commits

• 1b872cf Release v5.1.0
• f6cb466 Update CHANGELOG for 5.1.0
• e5f6e2d Register visibility-change early (#637)
• 1852851 Only finalize LCP on user events (isTrusted=true) (#635)
• f16c4b4 Fallback to default getSelector if custom function is null or undefined (#634)
• 8a54167 Release v5.0.3
• 61f7c36 Update CHANGELOG for 5.0.3
• e22d23b Remove visibiliytchange event listeners when no longer required (#627)
• 1509d64 Upgrade examples in README to v5 (#626)
• 463abbd Release v5.0.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)