Updating old Kusto links to new ones

yelevin · yelevin · commit 1a22fa78a3f1 · 2024-12-31T17:37:51.000+02:00
diff --git a/articles/sentinel/includes/kusto-reference-general-no-alert.md b/articles/sentinel/includes/kusto-reference-general-no-alert.md
@@ -0,0 +1,17 @@
+---
+title: "include file" 
+description: "include file" 
+services: microsoft-sentinel
+author: yelevin
+ms.author: yelevin
+ms.topic: "include"
+ms.date: 12/26/2024
+ms.custom: "include file"
+---
+<!-- docutune:disable -->
+
+For more information on KQL, see [Kusto Query Language (KQL) overview](/kusto/query/?view=microsoft-sentinel&preserve-view=true).
+
+Other resources:
+- [KQL quick reference](/kusto/query/kql-quick-reference?view=microsoft-sentinel&preserve-view=true)
+- [Kusto Query Language learning resources](/kusto/query/kql-learning-resources?view=microsoft-sentinel&preserve-view=true)
diff --git a/articles/sentinel/includes/kusto-reference-general.md b/articles/sentinel/includes/kusto-reference-general.md
@@ -0,0 +1,18 @@
+---
+title: "include file" 
+description: "include file" 
+services: microsoft-sentinel
+author: yelevin
+ms.author: yelevin
+ms.topic: "include"
+ms.date: 12/26/2024
+ms.custom: "include file"
+---
+<!-- docutune:disable -->
+
+> [!NOTE]
+> For more information on KQL, see [Kusto Query Language (KQL) overview](/kusto/query/?view=microsoft-sentinel&preserve-view=true).
+>
+> Other resources:
+> - [KQL quick reference](/kusto/query/kql-quick-reference?view=microsoft-sentinel&preserve-view=true)
+> - [Kusto Query Language learning resources](/kusto/query/kql-learning-resources?view=microsoft-sentinel&preserve-view=true)
diff --git a/articles/sentinel/siem-migration.md b/articles/sentinel/siem-migration.md
@@ -52,7 +52,7 @@ Current capabilities:
 
 - Map Splunk detections to OOTB Microsoft Sentinel analytics rules.
 - Translate simple queries with a single data source.
-- Automatic translations of SPL to KQL for the mappings listed in the article, [Splunk to Kusto cheat sheet](/azure/data-explorer/kusto/query/splunk-cheat-sheet).
+- Automatic translations of SPL to KQL for the mappings listed in the article, [Splunk to Kusto cheat sheet](/kusto/query/splunk-cheat-sheet?view=microsoft-sentinel&preserve-view=true).
 - **Schema Mapping (Preview)** creates logical links for the translated rules by mapping Splunk data sources to Microsoft Sentinel tables, and Splunk lookups to watchlists.
 - Translated query review provides error feedback with edit capability to save time in the detection rule translation process.
 - **Translation State** indicating how completely SPL syntax is translated to KQL at the grammatical level.
