I'm surprised at the suggestion in the article that Apple won't do something "messy" like push a fix via antivirus, but will instead just leave un-updated Macs around forever unless users (a) find out this a problem somehow, and (b) do a manual update.
A long time ago iOS 6 or 5 had the same issues with updating the iOS.
Their solution was to push an app to App Store which was called "iOS updater" or something. Installing and launching it would allow you install iOS update from Settings app.
Not to say that Apple doesn’t have other options, but I don’t think they can “push a fix via antivirus”. XProtect can remove software (like Zoom), but I don’t believe it can reconfigure the system.