Bump sm3 & add crates to skip list

[cakebaker]

This PR bumps sm3 from 0.4.2 to 0.5.0 and adds the crates digest, crypto-common, and block-buffer to the skip list in deny.toml.

Closes #11531

[codspeed-hq]

Merging this PR will not alter performance

✅ 302 untouched benchmarks
⏩ 46 skipped benchmarks¹

---

_{Comparing cakebaker:bump_sm3 (864ccfd) with main (15f57d0)}

Footnotes

1. 46 benchmarks were skipped, so the baseline results were used instead. If they were deleted from the codebase, click here and archive them to remove them from the performance reports. ↩

[github-actions]

GNU testsuite comparison:

Skipping an intermittent issue tests/date/date-locale-hour (passes in this run but fails in the 'main' branch)
Congrats! The gnu test tests/misc/io-errors is no longer failing!
Note: The gnu test tests/cut/bounded-memory is now being skipped but was previously passing.
Note: The gnu test tests/tail/pipe-f is now being skipped but was previously passing.
Congrats! The gnu test tests/unexpand/bounded-memory is now passing!

[xtqqczze]

@cakebaker As per #11492 (comment), should we wait until we can fully update to digest v0.11?:

$ cargo tree --invert digest --depth 1 --target all
digest v0.10.7
├── crc-fast v1.9.0
├── md-5 v0.10.6
├── sha1 v0.10.6
│   [dev-dependencies]
├── sha2 v0.10.9
├── sha3 v0.10.8
├── sm3 v0.4.2
└── uucore v0.8.0 (/Users/matthew/repos/xtqqczze/uutils-coreutils/src/uucore)
    [dev-dependencies]

The only dependencies yet to be updated to digest v0.11 are:

• crc-fast: chore(deps): update rust crate digest to 0.11 awesomized/crc-fast-rust#46
• sha3: Cut new releases RustCrypto/hashes#812 (comment)