redeploy metabase latest version with HTTP authentication

Metabase published another release 0.41.6 which bundles the latest log4j release that addresses a DOS attack (which metabase is not vulnerable from in the default configuration). Still worth upgrading.

We also decided to keep it behind another authentication layer to limit the attack surface.

I believe that @hiro wanted to do this, let me know if you need a hand.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information