chore(deps): bump form-data, tar, wrangler, and @opennextjs/cloudflare dependencies (#15435)

### What

Updates several dependencies to fix security vulnerabilities identified
in `pnpm audit`.

### Why

`pnpm audit` flagged critical and high severity vulnerabilities:
- `form-data` <3.0.4: unsafe random function in boundary generation
- `tar` <7.5.7: arbitrary file overwrite and path traversal issues
- `wrangler` <4.59.1: OS command injection in `wrangler pages deploy`
- `@opennextjs/cloudflare` 1.9.2: transitive dependency on vulnerable
`qs` package

### How

- Bumped `form-data` to 3.0.4 in root package.json
- Bumped `tar` to ^7.5.7 in create-payload-app
- Bumped `wrangler` to ~4.61.1 across root, test, and cloudflare-d1
template
- Bumped `@opennextjs/cloudflare` to 1.16.1 in test package

Author: PatrikKozak

package.json

@@ -186,7 +186,7 @@
     "escape-html": "^1.0.3",
     "eslint": "9.22.0",
     "execa": "5.1.1",
-    "form-data": "3.0.1",
+    "form-data": "3.0.4",
     "fs-extra": "10.1.0",
     "globby": "11.1.0",
     "husky": "9.0.11",
@@ -218,7 +218,7 @@
     "turbo": "^2.5.4",
     "typescript": "5.7.3",
     "vitest": "4.0.15",
-    "wrangler": "~4.42.0"
+    "wrangler": "~4.61.1"
   },
   "packageManager": "pnpm@10.27.0",
   "engines": {

packages/create-payload-app/package.json

@@ -71,7 +71,7 @@
     "fs-extra": "^9.0.1",
     "globby": "11.1.0",
     "prettier": "^3.5.0",
-    "tar": "^7.4.3",
+    "tar": "^7.5.7",
     "terminal-link": "^2.1.1",
     "ts-morph": "^21.0.1"
   },