Provide the SEMVER "Affected ranges" in addition to the GIT "Affected ranges"

[VinodAnandan]

https://osv.dev/vulnerability/GSD-2021-1000677

The "Affected versions" and the GIT "Affected ranges" range values are available. But providing the SEMVER "Afected ranges" too, will help with the enhanced affected component mapping. 

[oliverchang]

This is technically feasible: we'd just need to correlate the introduced/fixed/limit git hashes to the closest git tags and add the additional ranges.