Update Requests version to 2.20.0 to handle security risk

[kalyc]

Description

Update Requests version to 2.20.0 to handle security risk

Fixes #13032

Checklist

Essentials

Please feel free to remove inapplicable items for your PR.

• The PR title starts with [MXNET-$JIRA_ID], where $JIRA_ID refers to the relevant JIRA issue created (except PRs with tiny changes)
• Changes are complete (i.e. I finished coding on this PR)
• All changes have test coverage:
• Unit tests are added for small changes to verify correctness (e.g. adding a new operator)
• Nightly tests are added for complicated/long-running ones (e.g. changing distributed kvstore)
• Build tests will be added for build configuration changes (e.g. adding a new build option with NCCL)
• Code is well-documented:
• For user-facing API changes, API doc string has been updated.
• For new C++ functions in header files, their functionalities and arguments are documented.
• For new examples, README.md is added to explain the what the example does, the source of the dataset, expected performance on test set and reference to the original paper if applicable
• Check the API doc at http://mxnet-ci-doc.s3-accelerate.dualstack.amazonaws.com/PR-$PR_ID/$BUILD_ID/index.html
• To the my best knowledge, examples are either not affected by this change, or have been fixed to be compatible with this change

Changes

• Update Requests version to 2.20.0 in setup.py

[kalyc]

@nswamy @szha

[kalyc]

@mxnet-label-bot add [pr-awaiting-review]

[sandeep-krishnamurthy]

Can you please add some info on testing done?

[kalyc]

Tested on Deep Learning Base AMI (Ubuntu) Version 10.0 (ami-050ffa288f9b282c2)
using make -j8 USE_OPENCV=1 USE_BLAS=openblas USE_CUDA=1 USE_CUDA_PATH=/usr/local/cuda USE_CUDNN=1 & python setup.py install

>> import mxnet as mx

[sandeep-krishnamurthy]

LGTM.
@szha

[szha]

requests follow semver. add a limit to ,<3

[kalyc]

Done @szha