DOCS-928 - Insight summary - GA (#5650)

* Add insight summary pane

* Release note

* Update blog-cse/2025-09-11-application.md

Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com>

* Update cid-redirects.json

Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com>

* Add Summary Agent text

* Updates for 'open beta'

* Add FAQs

* Update from Pual Tobia review

* Add micro lesson video

* Change release note date to Sept 22 2025

* Move content into the 'insight-summary' article

* Tweak

* Fixes

---------

Co-authored-by: Kim (Sumo Logic) <56411016+kimsauce@users.noreply.github.com>

Author: jpipkin1

blog-cse/2025-09-22-application.md

@@ -0,0 +1,17 @@
+---
+title: September 22, 2025 - Application Update
+image: https://help.sumologic.com/img/reuse/rss-image.jpg
+keywords:
+  - insights
+hide_table_of_contents: true    
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+### Insight summary
+
+We’re excited to announce the new insight summary pane, an AI-generated synopsis for each insight that describes the threat incidents that led to its creation. This helps security teams understand incidents faster and accelerate response time. The summary is generated by Sumo Logic's Summary Agent, an agentic AI tool.
+
+[Learn more](/docs/cse/get-started-with-cloud-siem/insight-summary/).
+
+<img src={useBaseUrl('img/cse/insight-summary-pane.png')} alt="Insight summary" style={{border: '1px solid gray'}} width="300"/>

docs/cse/get-started-with-cloud-siem/about-cse-insight-ui.md

@@ -99,13 +99,12 @@ The left pane of the insight details page displays detailed information about th
 1. **Actions.** The [insight actions](/docs/cse/administration/create-cse-actions#insight-actions) defined in your environment.
 1. **Close Insight.** Use this option to close an insight. When you click this option, you’re prompted to select an insight resolution.
 1. **Delete Icon.** Use this option to delete an insight. You’ll be prompted to confirm your choice.
+1. **Summary**. [Insight summary](/docs/cse/get-started-with-cloud-siem/insight-summary/) generated by AI.
 1. **Status.** Current status of the insight.
 1. **Assignee** and **Assign to me.** Shows the current assignee and allows you to assign yourself the insight.
 1. **Entity.** The entity the insight fired on.
 1. **Severity.** Severity of the insight. Mouse over it to see an icon you can click to change the insight severity.
 1. **Global Confidence.** The [Global Confidence score](/docs/cse/records-signals-entities-insights/global-intelligence-security-insights/) for the insight, if available.
-1. **Related Incidents and Triages**. Incidents and triages that are related to this insight.
-1. **Create Incident | Add to Incident**. Create an incident for the insight, or add the insight to an existing incident.
 1. **Signal Data.** The number of signals in the insight.
 1. **Event Time.** The event time for the of the last signal in the insight.
 1. **Detection Time.** The time between when the first event happened (when the first record in the insight occurred) and when the insight was generated. (This differs from "dwell time", which is the time between when the first record and the last record occurred in an insight.)

docs/cse/get-started-with-cloud-siem/index.md

@@ -44,6 +44,12 @@ This guide helps you get started using Cloud SIEM for threat hunting.
   <p>Learn about the contents of the insights UI in Cloud SIEM.</p>
   </div>
 </div>
+<div className="box smallbox card">
+  <div className="container">
+  <a href="/docs/cse/get-started-with-cloud-siem/insight-summary"><img src={useBaseUrl('img/icons/security/siem-challenges.png')} alt="Shield on a workflow icon" width="40"/><h4>Insight Summary</h4></a>
+  <p>Learn how the insight summary pane uses AI to provide summaries of threat incidents.</p>
+  </div>
+</div>
 <div className="box smallbox card">
   <div className="container">
   <a href="/docs/cse/get-started-with-cloud-siem/cloud-siem-content-catalog"><img src={useBaseUrl('img/icons/security/compliance.png')} alt="Checklist icon" width="40"/><h4>Cloud SIEM Content Catalog</h4></a>

docs/cse/get-started-with-cloud-siem/insight-summary.md

@@ -5,23 +5,41 @@ description: The insight Summary pane uses AI to provide summaries of threat inc
 ---
 
 import useBaseUrl from '@docusaurus/useBaseUrl';
+import Iframe from 'react-iframe'; 
 
-<head>
- <meta name="robots" content="noindex" />
-</head>
+The insight **Summary** pane provides a concise, actionable summary of threat incidents based on triggered signals. It consolidates key details to facilitate quick understanding and response by security teams. The summary is generated by Sumo Logic's Summary Agent, an agentic AI tool.
 
-<p><a href="/docs/beta"><span className="beta">Beta</span></a></p>
-
-<!-- Originally added as a beta article with DOCS-236. -->
-
-The insight **Summary** pane provides a concise, actionable summary of threat incidents based on triggered signals using AI. It consolidates key details to facilitate quick understanding and response by security teams.
-
-The summary is generated only when the insight is created. The summary is not regenerated if signals are added or removed on the insight.
+The summary is generated when an insight is created, and is regenerated whenever the insight is modified, keeping it current with added or removed signals. Summaries are not only generated for insights created by the system, but also custom insights created manually by users via the UI.
 
 <img src={useBaseUrl('img/cse/insight-summary-pane.png')} alt="Insight summary" style={{border: '1px solid gray'}} width="300"/>
 
 :::note
-The insight summary is in [beta](/docs/manage/manage-subscription/beta-opt-in/). To participate, contact your Sumo account representative.
-
-Help us refine the tool by using the thumbs-up or thumbs-down buttons to provide feedback on the effectiveness of the summary presented.
-:::
+Help us refine the tool by using the thumbs-up or thumbs-down buttons to provide feedback on the effectiveness of the summary presented. Clicking the thumbs-down button gives you the opportunity to provide additional feedback.
+:::
+
+:::sumo Micro Lesson
+
+Watch this micro lesson to learn more about Sumo Logic's Summary Agent.
+
+<Iframe url="https://fast.wistia.net/embed/iframe/qpdjncnfnv?web_component=true&seo=true&videoFoam=false"
+  width="854px"
+  height="480px"
+  id="wistiaVideo"
+  className="video-container"
+  display="initial"
+  position="relative"
+  allow="autoplay; fullscreen"
+  allowfullscreen
+/>
+
+:::
+
+#### FAQs about the insight summary
+
+* **How does the AI handle data privacy?**
+    * There is no data sharing across tenants.
+    * No customer data or personally identifiable information (PII) is used to train models.
+    * Processing is limited to schemas and sample fields, and is reviewed for compliance.
+    * The AI is powered by Amazon Bedrock, with rolling expiration for temporary query history.
+* **Can insight summaries be accessed by the API?**<br/>Yes. The summaries are included in output when you run the [insight APIs](https://api.sumologic.com/docs/sec/#operation/GetInsight) in the [Cloud SIEM APIs](https://help.sumologic.com/docs/api/cloud-siem-enterprise/).
+* **Is there an additional cost?**<br/>No. The insight summary is included as part of Cloud SIEM at no extra licensing fee.

sidebars.ts

@@ -2827,6 +2827,7 @@ integrations: [
             'cse/get-started-with-cloud-siem/cse-heads-up-display',
             'cse/get-started-with-cloud-siem/insight-generation-process',
             'cse/get-started-with-cloud-siem/about-cse-insight-ui',
+            'cse/get-started-with-cloud-siem/insight-summary',
             'cse/get-started-with-cloud-siem/cloud-siem-content-catalog',
             'cse/get-started-with-cloud-siem/onboarding-checklist-cse',
           ],