Pega Upgraded from 8.7.4 to 24.1.3 and our application is receiving from below application

java code injection pattern identified in  the java source code. Vulnerable code detected:

java.lang.reflect.Array.getLength(paramVal);AddthetypeandarrayTypeattributesparamElem.addAttributeElem.addAtrribute("type","soapenc:Array",xsiNS);paramElem.addAttribute("arrayType","xsd:"+arrayType+'[+arra