Google Maps API Javascript embed is insecure

The Hubspot plugin appears to be embedding the following on every page:
<script type='text/javascript' src='http://maps.google.com/maps/api/js?sensor=false&ver=3.8.1'></script>
This is bad for two reasons:
1) Should be configurable to disable if it’s not needed, otherwise we are loading unneeded assets which is slowing performance.
2) Loading with http breaks if the site is hosted on https, which ours is.

https://wordpress.org/plugins/hubspot/