From da07e6f09b89ab09b9e6d2081e09253c71cf69eb Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Tue, 1 Mar 2022 09:40:37 -0500 Subject: [PATCH 01/11] First draft. --- docs/release-notes.asciidoc | 2 + docs/release-notes/8.1.asciidoc | 65 +++++++++++++++++++++++++++++++++ 2 files changed, 67 insertions(+) create mode 100644 docs/release-notes/8.1.asciidoc diff --git a/docs/release-notes.asciidoc b/docs/release-notes.asciidoc index a5f09d0503..327cd960cd 100644 --- a/docs/release-notes.asciidoc +++ b/docs/release-notes.asciidoc @@ -3,6 +3,7 @@ This section summarizes the changes in each release. +* <> * <> * <> * <> @@ -12,4 +13,5 @@ This section summarizes the changes in each release. :issue: https://github.com/elastic/kibana/issues/ :pull: https://github.com/elastic/kibana/pull/ +include::release-notes/8.1.asciidoc[] include::release-notes/8.0.asciidoc[] diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc new file mode 100644 index 0000000000..559cea626a --- /dev/null +++ b/docs/release-notes/8.1.asciidoc @@ -0,0 +1,65 @@ +[[release-notes-header-8.1.0]] +== 8.1 + +[discrete] +[[release-notes-8.1.0]] +=== 8.1.0 + +[discrete] +[[release-notes-8.1.0]] +== 8.1.0 + +[discrete] +[[features-8.1.0]] +==== Features +* Update the copy text of the permission check for Endpoint {pull}124118[#124118] +* Adds host risk tab to Hosts page {pull}122980[#122980] +* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns {pull}122635[#122635] +* Host Risk score tab on Host details page {pull}122586[#122586] +* Adds Host risk data to host details page {pull}122018[#122018] +* Artifacts event filter card on integration policy edit view {pull}121879[#121879] +* Host isolation exceptions fleet card on policy integration {pull}121632[#121632] +* Assign host isolation exceptions to policy from the policy settings view {pull}121393[#121393] +* Allow to remove a host isolation exception from a policy {pull}121280[#121280] +* Adds Host risk information flyout to Host risk KPI panel {pull}121075[#121075] +* Host isolation exceptions filter list by policy {pull}120598[#120598] +* Hosts Risk Step 2 - Hosts Page - Risk Column {pull}120487[#120487] +* Host isolation exceptions listing under policy integration details tab {pull}120361[#120361] +* Host isolation exceptions add and edit exceptions by policy {pull}119828[#119828] +* Hosts Risk Step 1 - Hosts Page - Risky Hosts KPI {pull}119734[#119734] +* Adds Rule Execution UUID {pull}113058[#113058] +* Activate Case detail metrics {pull}121336[#121336] + +[discrete] +[[bug-fixes-8.1.0]] +==== Bug fixes and enhancements +* Update the copy text of the permission check for Endpoint ({pull}124118[#124118]). +* Updates sort value of indicator requests to `_doc` ({pull}123882[#123882]). +* Restricts queried fields from the indicator index ({pull}123677[#123677]). +* Change default threat match query to @timestamp >= "now-30d/d" ({pull}123590[#123590]). +* Switches modal to flyout component ({pull}123408[#123408]). +* Apply new rules to fields in flyout summary ({pull}123239[#123239]). +* Adds keyboard handling for submitting live query ({pull}123224[#123224]). +* Adds host risk tab to Hosts page {pull}122980[#122980] +* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns ({pull}122635[#122635]). +* Host Risk score tab on Host details page ({pull}122586[#122586]). +* Adds Host risk data to host details page ({pull}122018[#122018]). +* Artifacts event filter card on integration policy edit view ({pull}121879[#121879]). +* Host isolation exceptions fleet card on policy integration ({pull}121632[#121632]). +* Assign host isolation exceptions to policy from the policy settings view ({pull}121393[#121393]). +* Adds additional endpoint transform health check ({pull}121366[#121366]). +* Allow to remove a host isolation exception from a policy ({pull}121280[#121280]). +* Adds Host risk information flyout to Host risk KPI panel ({pull}121075[#121075]). +* Alerts visualization free field selection ({pull}120610[#120610]). +* Host isolation exceptions filter list by policy ({pull}120598[#120598]). +* Hosts Risk Step 2 - Hosts Page - Risk Column ({pull}120487[#120487]). +* Host isolation exceptions listing under policy integration details tab ({pull}120361[#120361]). +* Alert flyout UX updates (pt. 1) ({pull}120347[#120347]). +* Host isolation exceptions add and edit exceptions by policy ({pull}119828[#119828]). +* Hosts Risk Step 1 - Hosts Page - Risky Hosts KPI ({pull}119734[#119734]). +* In-memory rules table implementation ({pull}119611[#119611]). +* Adds Rule Execution UUID ({pull}113058[#113058] +* Enrich threshold data from correct fields ({pull}125376[#125376]). +* Remove disabled exception list delete icon ({pull}122844[#122844]). +* Fixes UX bugs ({pull}121410[#121410]). +* Activate Case detail metrics ({pull}121336[#121336]). From 922f3236688bed3a526887553c9e66f6a550fd06 Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Tue, 1 Mar 2022 09:56:33 -0500 Subject: [PATCH 02/11] Remove dup tag --- docs/release-notes/8.1.asciidoc | 12 ++++++++++-- 1 file changed, 10 insertions(+), 2 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 559cea626a..7353340103 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -6,8 +6,16 @@ === 8.1.0 [discrete] -[[release-notes-8.1.0]] -== 8.1.0 +[[known-issues-8.1.0]] +==== Known issues +TBD + +[discrete] +[[breaking-changes-8.1.0]] +==== Breaking Changes +// tag::breaking-changes[] +TBD +// end::breaking-changes[] [discrete] [[features-8.1.0]] From 2cf56671f922fccadee024e39e935b3a44bbfad0 Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Tue, 1 Mar 2022 14:24:19 -0500 Subject: [PATCH 03/11] Updates --- docs/release-notes/8.1.asciidoc | 34 +++++++++++++++------------------ 1 file changed, 15 insertions(+), 19 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 7353340103..380cc1c81e 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -14,29 +14,25 @@ TBD [[breaking-changes-8.1.0]] ==== Breaking Changes // tag::breaking-changes[] -TBD +// NOTE: The breaking-changes tagged regions are re-used in the Elastic Installation and Upgrade Guide. The pull tag is defined within this snippet so it properly resolves in the output. +:pull: https://github.com/elastic/kibana/pull/ +There are no breaking changes in 8.1.0. // end::breaking-changes[] [discrete] [[features-8.1.0]] ==== Features -* Update the copy text of the permission check for Endpoint {pull}124118[#124118] -* Adds host risk tab to Hosts page {pull}122980[#122980] -* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns {pull}122635[#122635] -* Host Risk score tab on Host details page {pull}122586[#122586] -* Adds Host risk data to host details page {pull}122018[#122018] -* Artifacts event filter card on integration policy edit view {pull}121879[#121879] -* Host isolation exceptions fleet card on policy integration {pull}121632[#121632] -* Assign host isolation exceptions to policy from the policy settings view {pull}121393[#121393] -* Allow to remove a host isolation exception from a policy {pull}121280[#121280] -* Adds Host risk information flyout to Host risk KPI panel {pull}121075[#121075] -* Host isolation exceptions filter list by policy {pull}120598[#120598] -* Hosts Risk Step 2 - Hosts Page - Risk Column {pull}120487[#120487] -* Host isolation exceptions listing under policy integration details tab {pull}120361[#120361] -* Host isolation exceptions add and edit exceptions by policy {pull}119828[#119828] -* Hosts Risk Step 1 - Hosts Page - Risky Hosts KPI {pull}119734[#119734] -* Adds Rule Execution UUID {pull}113058[#113058] -* Activate Case detail metrics {pull}121336[#121336] +* Update the copy text of the permission check for Endpoint ({pull}124118[#124118] +* Adds host risk tab to Hosts page ({pull}122980[#122980] +* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns ({pull}122635[#122635] +* Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions({pull}121879[#121879], {pull}121632[#121632], {pull}121393[#121393], {pull}121280[#121280], {pull}120598[#120598], {pull}120361[#120361], {pull}119828[#119828]). +* Host Risk score tab on Host details page ({pull}122586[#122586]). +* Adds Host risk data to host details page ({pull}122018[#122018]). +* Adds Host risk information flyout to Host risk KPI panel ({pull}121075[#121075]). +* Hosts Risk Step 2 - Hosts Page - Risk Column ({pull}120487[#120487]). +* Hosts Risk Step 1 - Hosts Page - Risky Hosts KPI ({pull}119734[#119734]). +* Adds Rule Execution UUID ({pull}113058[#113058]). +* Activate Case detail metrics ({pull}121336[#121336]). [discrete] [[bug-fixes-8.1.0]] @@ -44,7 +40,7 @@ TBD * Update the copy text of the permission check for Endpoint ({pull}124118[#124118]). * Updates sort value of indicator requests to `_doc` ({pull}123882[#123882]). * Restricts queried fields from the indicator index ({pull}123677[#123677]). -* Change default threat match query to @timestamp >= "now-30d/d" ({pull}123590[#123590]). +* Changes the default threat match query of custom and prebuilt indicator match rules to `@timestamp >= "now-30d/d"` ({pull}123590[#123590]). * Switches modal to flyout component ({pull}123408[#123408]). * Apply new rules to fields in flyout summary ({pull}123239[#123239]). * Adds keyboard handling for submitting live query ({pull}123224[#123224]). From c36588764d37818eb868475fccdde9ae54c2b998 Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Wed, 2 Mar 2022 12:11:32 -0500 Subject: [PATCH 04/11] Ben's input --- docs/release-notes/8.1.asciidoc | 50 +++++++++++---------------------- 1 file changed, 16 insertions(+), 34 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 380cc1c81e..5af2021345 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -22,10 +22,10 @@ There are no breaking changes in 8.1.0. [discrete] [[features-8.1.0]] ==== Features -* Update the copy text of the permission check for Endpoint ({pull}124118[#124118] -* Adds host risk tab to Hosts page ({pull}122980[#122980] -* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns ({pull}122635[#122635] -* Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions({pull}121879[#121879], {pull}121632[#121632], {pull}121393[#121393], {pull}121280[#121280], {pull}120598[#120598], {pull}120361[#120361], {pull}119828[#119828]). +* Update the copy text of the permission check for Endpoint ({pull}124118[#124118]). +* Adds host risk tab to Hosts page ({pull}122980[#122980]). +* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns ({pull}122635[#122635]). +* Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632], {pull}121393[#121393], {pull}121280[#121280], {pull}120598[#120598], {pull}120361[#120361], {pull}119828[#119828]). * Host Risk score tab on Host details page ({pull}122586[#122586]). * Adds Host risk data to host details page ({pull}122018[#122018]). * Adds Host risk information flyout to Host risk KPI panel ({pull}121075[#121075]). @@ -37,33 +37,15 @@ There are no breaking changes in 8.1.0. [discrete] [[bug-fixes-8.1.0]] ==== Bug fixes and enhancements -* Update the copy text of the permission check for Endpoint ({pull}124118[#124118]). -* Updates sort value of indicator requests to `_doc` ({pull}123882[#123882]). -* Restricts queried fields from the indicator index ({pull}123677[#123677]). -* Changes the default threat match query of custom and prebuilt indicator match rules to `@timestamp >= "now-30d/d"` ({pull}123590[#123590]). -* Switches modal to flyout component ({pull}123408[#123408]). -* Apply new rules to fields in flyout summary ({pull}123239[#123239]). -* Adds keyboard handling for submitting live query ({pull}123224[#123224]). -* Adds host risk tab to Hosts page {pull}122980[#122980] -* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns ({pull}122635[#122635]). -* Host Risk score tab on Host details page ({pull}122586[#122586]). -* Adds Host risk data to host details page ({pull}122018[#122018]). -* Artifacts event filter card on integration policy edit view ({pull}121879[#121879]). -* Host isolation exceptions fleet card on policy integration ({pull}121632[#121632]). -* Assign host isolation exceptions to policy from the policy settings view ({pull}121393[#121393]). -* Adds additional endpoint transform health check ({pull}121366[#121366]). -* Allow to remove a host isolation exception from a policy ({pull}121280[#121280]). -* Adds Host risk information flyout to Host risk KPI panel ({pull}121075[#121075]). -* Alerts visualization free field selection ({pull}120610[#120610]). -* Host isolation exceptions filter list by policy ({pull}120598[#120598]). -* Hosts Risk Step 2 - Hosts Page - Risk Column ({pull}120487[#120487]). -* Host isolation exceptions listing under policy integration details tab ({pull}120361[#120361]). -* Alert flyout UX updates (pt. 1) ({pull}120347[#120347]). -* Host isolation exceptions add and edit exceptions by policy ({pull}119828[#119828]). -* Hosts Risk Step 1 - Hosts Page - Risky Hosts KPI ({pull}119734[#119734]). -* In-memory rules table implementation ({pull}119611[#119611]). -* Adds Rule Execution UUID ({pull}113058[#113058] -* Enrich threshold data from correct fields ({pull}125376[#125376]). -* Remove disabled exception list delete icon ({pull}122844[#122844]). -* Fixes UX bugs ({pull}121410[#121410]). -* Activate Case detail metrics ({pull}121336[#121336]). +* Improves the performance of indicator match rules ({pull}123882[#123882], {pull}123677[#123677]). +* Changes the default indicator index query of custom and prebuilt indicator match rules to `@timestamp >= "now-30d/d"` ({pull}123590[#123590]). +* Improves the exceptions interface by replacing the exceptions modal with a flyout ({pull}123408[#123408]). +* Alert details flyout enhancements: +** Shows different “highlighted fields” in an alert’s details flyout based on its type, category, and code ({pull}123239[#123239]). +** Adds overview cards with key data to the alert details flyout ({pull}120347[#120347]). +** Allows you to aggregate alert data based on any aggregatable ECS field instead of just 10 preset options ({pull}120610[#120610]). +* Speeds up the rules table by implementing an in-memory rules cache ({pull}119611[#119611]). +* Adds another integrity check for endpoint transforms ({pull}121366[#121366]). +* Enrich threshold-related alert data from correct fields ({pull}125376[#125376]). +* Hides the delete button for disabled exception lists ({pull}122844[#122844]). +* Fixes various minor UX bugs ({pull}121410[#121410]). From a6006e3499cc45c85a948b7797d9de801b493e32 Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Wed, 2 Mar 2022 13:08:19 -0500 Subject: [PATCH 05/11] Summary updates --- docs/release-notes/8.1.asciidoc | 13 ++++--------- 1 file changed, 4 insertions(+), 9 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 5af2021345..76c3c54d16 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -22,17 +22,12 @@ There are no breaking changes in 8.1.0. [discrete] [[features-8.1.0]] ==== Features -* Update the copy text of the permission check for Endpoint ({pull}124118[#124118]). -* Adds host risk tab to Hosts page ({pull}122980[#122980]). -* Adds ability to bulk edit rules in rules management/monitoring tables. Available for bulk edit fields: tags and index patterns ({pull}122635[#122635]). +* Improves copy for the privilege check on the Endpoint page ({pull}124118[#124118]). +* Introduces a new *Host risk classification* column in the All hosts table on the *Hosts* page. In addition, a new *Host by risk* tab has been added to the *Hosts* page and host detail pages. From the *Host by risk* tab, you can access an explanation of how a host’s risk is calculated and scored ({pull}122980[#122980], {pull}122586[#122586], {pull}122018[#122018], {pull}121075[#121075], {pull}120487[#120487], {pull}119734[#119734]). +* Introduces the ability to bulk edit rule index patterns and tags ({pull}122635[#122635]). * Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632], {pull}121393[#121393], {pull}121280[#121280], {pull}120598[#120598], {pull}120361[#120361], {pull}119828[#119828]). -* Host Risk score tab on Host details page ({pull}122586[#122586]). -* Adds Host risk data to host details page ({pull}122018[#122018]). -* Adds Host risk information flyout to Host risk KPI panel ({pull}121075[#121075]). -* Hosts Risk Step 2 - Hosts Page - Risk Column ({pull}120487[#120487]). -* Hosts Risk Step 1 - Hosts Page - Risky Hosts KPI ({pull}119734[#119734]). * Adds Rule Execution UUID ({pull}113058[#113058]). -* Activate Case detail metrics ({pull}121336[#121336]). +* Introduces case metrics that summarize alert information and response times ({pull}121336[#121336]). [discrete] [[bug-fixes-8.1.0]] From 62dff6b5d97e0999ad72beb609b8a939eb0b01a0 Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Wed, 2 Mar 2022 17:40:26 -0500 Subject: [PATCH 06/11] Minor changes --- docs/release-notes/8.1.asciidoc | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 76c3c54d16..18f8c58735 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -5,11 +5,6 @@ [[release-notes-8.1.0]] === 8.1.0 -[discrete] -[[known-issues-8.1.0]] -==== Known issues -TBD - [discrete] [[breaking-changes-8.1.0]] ==== Breaking Changes @@ -25,7 +20,7 @@ There are no breaking changes in 8.1.0. * Improves copy for the privilege check on the Endpoint page ({pull}124118[#124118]). * Introduces a new *Host risk classification* column in the All hosts table on the *Hosts* page. In addition, a new *Host by risk* tab has been added to the *Hosts* page and host detail pages. From the *Host by risk* tab, you can access an explanation of how a host’s risk is calculated and scored ({pull}122980[#122980], {pull}122586[#122586], {pull}122018[#122018], {pull}121075[#121075], {pull}120487[#120487], {pull}119734[#119734]). * Introduces the ability to bulk edit rule index patterns and tags ({pull}122635[#122635]). -* Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632], {pull}121393[#121393], {pull}121280[#121280], {pull}120598[#120598], {pull}120361[#120361], {pull}119828[#119828]). +* Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632]). * Adds Rule Execution UUID ({pull}113058[#113058]). * Introduces case metrics that summarize alert information and response times ({pull}121336[#121336]). From c6d4555ed13b096178b7d1d357b27bdd64973936 Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Wed, 2 Mar 2022 18:18:52 -0500 Subject: [PATCH 07/11] Removing PR --- docs/release-notes/8.1.asciidoc | 1 - 1 file changed, 1 deletion(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 18f8c58735..3298930a0c 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -35,7 +35,6 @@ There are no breaking changes in 8.1.0. ** Adds overview cards with key data to the alert details flyout ({pull}120347[#120347]). ** Allows you to aggregate alert data based on any aggregatable ECS field instead of just 10 preset options ({pull}120610[#120610]). * Speeds up the rules table by implementing an in-memory rules cache ({pull}119611[#119611]). -* Adds another integrity check for endpoint transforms ({pull}121366[#121366]). * Enrich threshold-related alert data from correct fields ({pull}125376[#125376]). * Hides the delete button for disabled exception lists ({pull}122844[#122844]). * Fixes various minor UX bugs ({pull}121410[#121410]). From 40e1bb648b9393ac161fee999ff97ef5fbf8317f Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Thu, 3 Mar 2022 10:56:02 -0500 Subject: [PATCH 08/11] Joe's edits --- docs/release-notes/8.1.asciidoc | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 3298930a0c..b67a3e24b9 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -7,9 +7,9 @@ [discrete] [[breaking-changes-8.1.0]] -==== Breaking Changes +==== Breaking changes // tag::breaking-changes[] -// NOTE: The breaking-changes tagged regions are re-used in the Elastic Installation and Upgrade Guide. The pull tag is defined within this snippet so it properly resolves in the output. +// NOTE: The breaking-changes tagged regions are re-used in the Elastic Installation and Upgrade Guide. The pull attribute is defined within this snippet so it properly resolves in the output. :pull: https://github.com/elastic/kibana/pull/ There are no breaking changes in 8.1.0. // end::breaking-changes[] @@ -21,7 +21,7 @@ There are no breaking changes in 8.1.0. * Introduces a new *Host risk classification* column in the All hosts table on the *Hosts* page. In addition, a new *Host by risk* tab has been added to the *Hosts* page and host detail pages. From the *Host by risk* tab, you can access an explanation of how a host’s risk is calculated and scored ({pull}122980[#122980], {pull}122586[#122586], {pull}122018[#122018], {pull}121075[#121075], {pull}120487[#120487], {pull}119734[#119734]). * Introduces the ability to bulk edit rule index patterns and tags ({pull}122635[#122635]). * Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632]). -* Adds Rule Execution UUID ({pull}113058[#113058]). +* Adds the rule execution UUID field to alerts. In addition, the `kibana.alert.rule.execution.uuid` is now part of the alert data schema and can be found in the field browser for the Alert's table.({pull}113058[#113058]). * Introduces case metrics that summarize alert information and response times ({pull}121336[#121336]). [discrete] @@ -31,7 +31,7 @@ There are no breaking changes in 8.1.0. * Changes the default indicator index query of custom and prebuilt indicator match rules to `@timestamp >= "now-30d/d"` ({pull}123590[#123590]). * Improves the exceptions interface by replacing the exceptions modal with a flyout ({pull}123408[#123408]). * Alert details flyout enhancements: -** Shows different “highlighted fields” in an alert’s details flyout based on its type, category, and code ({pull}123239[#123239]). +** Shows different highlighted fields in an alert’s details flyout based on its type, category, and code ({pull}123239[#123239]). ** Adds overview cards with key data to the alert details flyout ({pull}120347[#120347]). ** Allows you to aggregate alert data based on any aggregatable ECS field instead of just 10 preset options ({pull}120610[#120610]). * Speeds up the rules table by implementing an in-memory rules cache ({pull}119611[#119611]). From c70d8efcd24f42e909ed6e4ac03c40e24c91ceef Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Thu, 3 Mar 2022 18:17:40 -0500 Subject: [PATCH 09/11] Edits from Janeen, Pedro, and Joe --- docs/release-notes/8.1.asciidoc | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index b67a3e24b9..00dabf1cfe 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -17,7 +17,8 @@ There are no breaking changes in 8.1.0. [discrete] [[features-8.1.0]] ==== Features -* Improves copy for the privilege check on the Endpoint page ({pull}124118[#124118]). +* Adds the Technical preview toggle above the Rules table which, when enabled, allows users to sort on all rule management columns ({pull}119611[#119611]). +* Improves copy for the privilege check on the Endpoints page ({pull}124118[#124118]). * Introduces a new *Host risk classification* column in the All hosts table on the *Hosts* page. In addition, a new *Host by risk* tab has been added to the *Hosts* page and host detail pages. From the *Host by risk* tab, you can access an explanation of how a host’s risk is calculated and scored ({pull}122980[#122980], {pull}122586[#122586], {pull}122018[#122018], {pull}121075[#121075], {pull}120487[#120487], {pull}119734[#119734]). * Introduces the ability to bulk edit rule index patterns and tags ({pull}122635[#122635]). * Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632]). @@ -34,7 +35,6 @@ There are no breaking changes in 8.1.0. ** Shows different highlighted fields in an alert’s details flyout based on its type, category, and code ({pull}123239[#123239]). ** Adds overview cards with key data to the alert details flyout ({pull}120347[#120347]). ** Allows you to aggregate alert data based on any aggregatable ECS field instead of just 10 preset options ({pull}120610[#120610]). -* Speeds up the rules table by implementing an in-memory rules cache ({pull}119611[#119611]). -* Enrich threshold-related alert data from correct fields ({pull}125376[#125376]). +* Enriches threshold-related alert data from correct fields ({pull}125376[#125376]). * Hides the delete button for disabled exception lists ({pull}122844[#122844]). * Fixes various minor UX bugs ({pull}121410[#121410]). From 666641500f536a3b643ee9c27febd81fb191dbe9 Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Fri, 4 Mar 2022 09:02:51 -0500 Subject: [PATCH 10/11] Ben's input --- docs/release-notes/8.1.asciidoc | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index 00dabf1cfe..a551991936 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -17,13 +17,13 @@ There are no breaking changes in 8.1.0. [discrete] [[features-8.1.0]] ==== Features -* Adds the Technical preview toggle above the Rules table which, when enabled, allows users to sort on all rule management columns ({pull}119611[#119611]). -* Improves copy for the privilege check on the Endpoints page ({pull}124118[#124118]). +* Adds a *Technical preview* toggle above the Rules table which, when enabled, allows users to sort on all rule management columns ({pull}119611[#119611]). * Introduces a new *Host risk classification* column in the All hosts table on the *Hosts* page. In addition, a new *Host by risk* tab has been added to the *Hosts* page and host detail pages. From the *Host by risk* tab, you can access an explanation of how a host’s risk is calculated and scored ({pull}122980[#122980], {pull}122586[#122586], {pull}122018[#122018], {pull}121075[#121075], {pull}120487[#120487], {pull}119734[#119734]). * Introduces the ability to bulk edit rule index patterns and tags ({pull}122635[#122635]). * Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632]). * Adds the rule execution UUID field to alerts. In addition, the `kibana.alert.rule.execution.uuid` is now part of the alert data schema and can be found in the field browser for the Alert's table.({pull}113058[#113058]). * Introduces case metrics that summarize alert information and response times ({pull}121336[#121336]). +* Improves copy for the privilege check on the Endpoints page ({pull}124118[#124118]). [discrete] [[bug-fixes-8.1.0]] From b135f3e14cbc6a2c11f6c84a657516a5aaf12b9b Mon Sep 17 00:00:00 2001 From: "nastasha.solomon" Date: Mon, 7 Mar 2022 16:25:20 -0500 Subject: [PATCH 11/11] Janeen's edits' --- docs/release-notes/8.1.asciidoc | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/release-notes/8.1.asciidoc b/docs/release-notes/8.1.asciidoc index a551991936..d69b081d81 100644 --- a/docs/release-notes/8.1.asciidoc +++ b/docs/release-notes/8.1.asciidoc @@ -21,7 +21,7 @@ There are no breaking changes in 8.1.0. * Introduces a new *Host risk classification* column in the All hosts table on the *Hosts* page. In addition, a new *Host by risk* tab has been added to the *Hosts* page and host detail pages. From the *Host by risk* tab, you can access an explanation of how a host’s risk is calculated and scored ({pull}122980[#122980], {pull}122586[#122586], {pull}122018[#122018], {pull}121075[#121075], {pull}120487[#120487], {pull}119734[#119734]). * Introduces the ability to bulk edit rule index patterns and tags ({pull}122635[#122635]). * Expands Endpoint per-policy artifact assignment to include endpoint event filters and host isolation IP exceptions ({pull}121879[#121879], {pull}121632[#121632]). -* Adds the rule execution UUID field to alerts. In addition, the `kibana.alert.rule.execution.uuid` is now part of the alert data schema and can be found in the field browser for the Alert's table.({pull}113058[#113058]). +* Adds the rule execution UUID field to alerts. In addition, the `kibana.alert.rule.execution.uuid` field is now part of the alert data schema and can be found in the field browser in the Alerts table.({pull}113058[#113058]). * Introduces case metrics that summarize alert information and response times ({pull}121336[#121336]). * Improves copy for the privilege check on the Endpoints page ({pull}124118[#124118]). @@ -34,7 +34,7 @@ There are no breaking changes in 8.1.0. * Alert details flyout enhancements: ** Shows different highlighted fields in an alert’s details flyout based on its type, category, and code ({pull}123239[#123239]). ** Adds overview cards with key data to the alert details flyout ({pull}120347[#120347]). -** Allows you to aggregate alert data based on any aggregatable ECS field instead of just 10 preset options ({pull}120610[#120610]). +* Allows users to aggregate alert data based on a larger selection of ECS fields instead of just 10 preset options ({pull}120610[#120610]). * Enriches threshold-related alert data from correct fields ({pull}125376[#125376]). * Hides the delete button for disabled exception lists ({pull}122844[#122844]). * Fixes various minor UX bugs ({pull}121410[#121410]).