Merge pull request #271872 from batamig/playbooks-entity-incident-ga

Sentinel playbooks incidents / entities to GA

Author: v-dirichards

articles/sentinel/automation/create-playbooks.md

@@ -90,11 +90,11 @@ Do the following to create your playbook:
 
 1. In the **Review and create** tab, review the configuration choices you made, and select **Create and continue to designer**.
 
-    Your playbook will take a few minutes to be created and deployed, after which you see the message "Your deployment is complete" and you're taken to your new playbook's [Logic App Designer](/azure/logic-apps/logic-apps-overview). The trigger you chose at the beginning is automatically been added as the first step, and you can continue designing the workflow from there.
+    Your playbook will take a few minutes to be created and deployed, after which you see the message "Your deployment is complete" and you're taken to your new playbook's [Logic App Designer](/azure/logic-apps/logic-apps-overview). The trigger you chose at the beginning is automatically added as the first step, and you can continue designing the workflow from there.
 
     :::image type="content" source="../media/tutorial-respond-threats-playbook/logic-app-blank.png" alt-text="Screenshot of logic app designer screen with opening trigger." lightbox="../media/tutorial-respond-threats-playbook/logic-app-blank.png":::
 
-1. If you chose the **Microsoft Sentinel entity (Preview)** trigger, select the type of entity you want this playbook to receive as an input.
+1. If you chose the **Microsoft Sentinel entity** trigger, select the type of entity you want this playbook to receive as an input.
 
     :::image type="content" source="../media/tutorial-respond-threats-playbook/entity-trigger-types.png" alt-text="Screenshot of drop-down list of entity types to choose from to set playbook schema.":::
 

articles/sentinel/automation/playbook-triggers-actions.md

@@ -35,7 +35,7 @@ For more information, see [Roles and permissions in Microsoft Sentinel](../roles
 
 The Microsoft Sentinel connector, and therefore Microsoft Sentinel playbooks, support the following triggers:
 
-- **Microsoft Sentinel incident (Preview)**. Recommended for most incident automation scenarios.
+- **Microsoft Sentinel incident**. Recommended for most incident automation scenarios.
 
     The playbook receives incident objects, including both entities and alerts. This trigger allows you to attach a playbook to an automation rule that can be triggered whenever an incident is created or updated in Microsoft Sentinel, applying all the [benefits of automation rules](../automate-incident-handling-with-automation-rules.md) to the incident.
 
@@ -44,7 +44,7 @@ The Microsoft Sentinel connector, and therefore Microsoft Sentinel playbooks, su
     - This trigger can't be used to automate responses for alerts generated by *Microsoft security* analytics rules.
     - Playbooks using this trigger can't be called by automation rules.
 
-- **Microsoft Sentinel entity (Preview)**. Recommended for playbooks that must be run manually on specific entities from an investigation or threat hunting context. Playbooks using this trigger can't be called by automation rules.
+- **Microsoft Sentinel entity**. Recommended for playbooks that must be run manually on specific entities from an investigation or threat hunting context. Playbooks using this trigger can't be called by automation rules.
 
 The schemas used by these flows aren't identical. We recommend using the **Microsoft Sentinel incident trigger** flow for most scenarios.
 

articles/sentinel/feature-availability.md

@@ -102,8 +102,8 @@ This article describes the features available in Microsoft Sentinel across diffe
 |[Microsoft 365 Defender incident integration](microsoft-365-defender-sentinel-integration.md#working-with-microsoft-defender-xdr-incidents-in-microsoft-sentinel-and-bi-directional-sync) |GA |✅ |✅| ❌ |
 |[Microsoft Teams integrations](collaborate-in-microsoft-teams.md) |Public preview |✅ |✅| ❌ |
 |[Playbook template gallery](use-playbook-templates.md) |Public preview |✅ |✅| ❌ |
-|[Run playbooks on entities](respond-threats-during-investigation.md) |Public preview |✅ |✅ |✅ |
-|[Run playbooks on incidents](automate-responses-with-playbooks.md) |Public preview |✅ |✅| ✅ |
+|[Run playbooks on entities](respond-threats-during-investigation.md) |GA |✅ |✅ |✅ |
+|[Run playbooks on incidents](automate-responses-with-playbooks.md) |GA |✅ |✅| ✅ |
 |[SOC incident audit metrics](manage-soc-with-incident-metrics.md)     |GA         |✅ |✅| ✅         |
 
 ## Machine Learning

articles/sentinel/media/tutorial-respond-threats-playbook/entity-trigger-types-standard.png

@@ -4,7 +4,7 @@ description: Learn about the latest new features and announcement in Microsoft S
 author: yelevin
 ms.author: yelevin
 ms.topic: concept
-ms.date: 04/30/2024
+ms.date: 05/21/2024
 ---
 
 # What's new in Microsoft Sentinel
@@ -20,8 +20,17 @@ The listed features were released in the last three months. For information abou
 
 ## May 2024
 
+- [Incident and entity triggers in playbooks are now Generally Available (GA)](#incident-and-entity-triggers-in-playbooks-are-now-generally-available-ga)
 - [Optimize your security operations with SOC optimizations](#optimize-your-security-operations-with-soc-optimizations-preview)
 
+### Incident and entity triggers in playbooks are now Generally Available (GA)
+
+The ability to use incident and entity triggers is playbooks is now supported as GA.
+
+:::image type="content" source="media/whats-new/sentinel-triggers-ga.png" alt-text="Screenshot of the Microsoft Sentinel incident and entity options with no preview notice.":::
+
+For more information, see [Create a playbook](tutorial-respond-threats-playbook.md#create-a-playbook).
+
 ### Optimize your security operations with SOC optimizations (preview)
 
 Microsoft Sentinel now provides SOC optimizations, which are high-fidelity and actionable recommendations that help you identify areas where you can reduce costs, without affecting SOC needs or coverage, or where you can add security controls and data where its found to be missing.