Update Ubuntu unimportant filter

We currently rely on the ubuntu_priority tag from the ecosystem_specific field to determine if an Ubuntu CVE is negligible. Since the new OSV schema (https://github.com/ossf/osv-schema/pull/337) is moving this tag into the severity field, we'll need to update our osv-scanner logic to ensure our 'unimportant' vulnerability filtering still works as intended.