fix(security): reverse tabnabbing risk from target="_blank" lin

Multiple templates open external sites in new tabs with `target="_blank"` but without `rel="noopener noreferrer"`. Opened pages can access `window.opener` and potentially navigate the originating extension page.

Affected files: App.tsx

Signed-off-by: tuanaiseo <221258316+tuanaiseo@users.noreply.github.com>

Author: tuanaiseo

templates/react/entrypoints/popup/App.tsx

@@ -9,10 +9,10 @@ function App() {
   return (
     <>
       <div>
-        <a href="https://wxt.dev" target="_blank">
+        <a href="https://wxt.dev" target="_blank" rel="noopener noreferrer">
           <img src={wxtLogo} className="logo" alt="WXT logo" />
         </a>
-        <a href="https://react.dev" target="_blank">
+        <a href="https://react.dev" target="_blank" rel="noopener noreferrer">
           <img src={reactLogo} className="logo react" alt="React logo" />
         </a>
       </div>