Update eslint secure analyzer to analyze jsx

Why:

* ESlint is able to analyze jsx, so we should trigger analyze jobs for
  projects that find .jsx files.

This change addresses the need by:

* Add jsx exists filter for the eslint-sast job in the
  SAST.gitlab-ci.yml template.

changelogs/unreleased/jsx-analyzer.yml

+---
+title: Update eslint secure analyzer to analyze jsx
+merge_request: 36505
+author:
+type: changed

ee/spec/lib/gitlab/ci/templates/sast_gitlab_ci_yaml_spec.rb

@@ -68,6 +68,7 @@ RSpec.describe 'SAST.gitlab-ci.yml' do
             'Groovy'               | { 'app.groovy' => '' }               | {}                                        | %w(spotbugs-sast secrets-sast)
             'Java'                 | { 'app.java' => '' }                 | {}                                        | %w(spotbugs-sast secrets-sast)
             'Javascript'           | { 'app.js' => '' }                   | {}                                        | %w(eslint-sast secrets-sast)
+            'JSX'                  | { 'app.jsx' => '' }                  | {}                                        | %w(eslint-sast secrets-sast)
             'Javascript Node'      | { 'package.json' => '' }             | {}                                        | %w(nodejs-scan-sast secrets-sast)
             'HTML'                 | { 'index.html' => '' }               | {}                                        | %w(eslint-sast secrets-sast)
             'Kubernetes Manifests' | { 'Chart.yaml' => '' }               | { 'SCAN_KUBERNETES_MANIFESTS' => 'true' } | %w(kubesec-sast secrets-sast)

lib/gitlab/ci/templates/Security/SAST.gitlab-ci.yml

@@ -95,6 +95,7 @@ eslint-sast:
       exists:
         - '**/*.html'
         - '**/*.js'
+        - '**/*.jsx'
 
 flawfinder-sast:
   extends: .sast-analyzer