implementing some feedback

Shereen-Bhar · Shereen-Bhar · commit 54696e918517 · 2023-04-11T14:31:15.000+03:00
diff --git a/articles/defender-for-cloud/TOC.yml b/articles/defender-for-cloud/TOC.yml
@@ -166,7 +166,7 @@
       href: concept-data-security-posture.md
     - name: Support and prerequisites
       href: concept-data-security-posture-prepare.md
-  - name: Improve your cloud security posture
+  - name: Improve your container security posture
     href: concept-agentless-containers.md
   - name: Security recommendations
     items:
diff --git a/articles/defender-for-cloud/concept-agentless-containers.md b/articles/defender-for-cloud/concept-agentless-containers.md
@@ -11,9 +11,7 @@ ms.custom: template-concept
 
 Identify security risks in containers and Kubernetes realms with an agentless discovery and visibility capability across SDLC and runtime.
 
-Agentless Container Posture offers container vulnerability assessment insights as part of [Cloud Security Explorer](how-to-manage-cloud-security-explorer.md) and Kubernetes [Attack Path](attack-path-reference.md#attack-paths) analysis.
-
-Agentless Container Posture maximizes coverage on container posture issues and extends beyond the reach of agent-based assessments, providing a holistic approach to your posture improvement.
+With container vulnerability assessment insights as part of [Cloud Security Explorer](how-to-manage-cloud-security-explorer.md) and Kubernetes [Attack Path](attack-path-reference.md#attack-paths) analysis, you can maximize coverage on container posture issues and extend beyond the reach of agent-based assessments, providing a holistic approach to your posture improvement.
 
 Learn more about [Cloud Security Posture Management](concept-cloud-security-posture-management.md).
 
@@ -24,15 +22,14 @@ Learn more about [Cloud Security Posture Management](concept-cloud-security-post
 
 Agentless Container Posture provides the following capabilities:
 
-- Enabling agentless discovery and visibility within Kubernetes parameters.
-- Enabling agentless container registry vulnerability assessment, using the image scanning results of your Azure Container Registry (ACR) to enable queries on the Cloud Security Explorer.
+- Using Kubernetes Attack Path analysis to visualize risks and threats to Kubernetes environments.
+- Using Cloud Security Explorer for risk hunting by querying various risk scenarios.
+- Viewing security insights, such as internet exposure, and other pre-defined security scenarios. For more information, search for "Kubernetes" in the [list of Insights](attack-path-reference.md#insights).
+- Agentless discovery and visibility within Kubernetes components.
+- Agentless container registry vulnerability assessment, using the image scanning results of your Azure Container Registry (ACR) with Cloud Security Explorer.
 
     A [vulnerability assessment](defender-for-containers-vulnerability-assessment-azure.md) for Containers in Defender Cloud Security Posture Management (CSPM) gives you frictionless, wide, and instant visibility on actionable posture issues without installed agents, network connectivity requirements, or container performance impact.
 
-- Viewing security insights, such as internet exposure, and other pre-defined security scenarios. For more information, see the [list of Insights](attack-path-reference.md#insights).
-- Using Cloud Security Explorer for risk hunting by querying various risk scenarios.
-- Using Kubernetes Attack Path analysis to visualize risks and threats to Kubernetes environments.
-
 All of these capabilities are available as part of the [Defender Cloud Security Posture Management](concept-cloud-security-posture-management.md) plan.
 
 ## Availability
@@ -75,17 +72,17 @@ Learn more about [trusted versions that AKS supports](/azure/aks/supported-kuber
 
 Verify that the settings were saved successfully - a notification message pops up in the top right corner.
 
-### Image scanning intervals
+### Image refresh intervals
 
 Agentless information in Defender CSPM is updated once an hour via snapshotting mechanism. It can take up to **24 hours** to see results in Cloud Security Explorer and Attack Path.
 
-Learn more about [agentless scanning](concept-agentless-data-collection.md).
+Recommendations are available based on vulnerability assessment timeline. Learn more about [agentless scanning](concept-agentless-data-collection.md).
 
 ## How agentless containers works
 
 The system’s architecture is based on a snapshot mechanism at intervals.
 
-:::image type="content" source="media/concept-agentless-containers/diagram-permissions-architecture.png" alt-text="Diagram of the permissions architecture." lightbox="media/concept-agentless-containers/diagram-permissions-architecture.png":::
+<!--- :::image type="content" source="media/concept-agentless-containers/diagram-permissions-architecture.png" alt-text="Diagram of the permissions architecture." lightbox="media/concept-agentless-containers/diagram-permissions-architecture.png"::: --->
 
 By enabling the Agentless discovery for Kubernetes extension, the following process occurs:
 
diff --git a/articles/defender-for-cloud/concept-cloud-security-posture-management.md b/articles/defender-for-cloud/concept-cloud-security-posture-management.md
@@ -63,8 +63,8 @@ The following table summarizes each plan and their cloud availability.
 | [Cloud security explorer](how-to-manage-cloud-security-explorer.md) | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure, AWS |
 | [Attack path analysis](how-to-manage-attack-path.md) | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure, AWS |
 | [Agentless scanning for machines](concept-agentless-data-collection.md) | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure, AWS |
-| Agentless discovery for Kubernetes | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure |
-| Agentless vulnerability assessments for container images, including registry scanning (\* Up to 20 unique images per billable resource) | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure |
+| [Agentless discovery for Kubernetes](concept-agentless-containers.md) | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure |
+| [Agentless vulnerability assessments for container images](defender-for-containers-vulnerability-assessment-azure.md), including registry scanning (\* Up to 20 unique images per billable resource) | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure |
 | Sensitive data discovery | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure, AWS |
 | Data flows discovery | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure, AWS |
 | EASM insights in network exposure | - | :::image type="icon" source="./media/icons/yes-icon.png"::: | Azure, AWS |
diff --git a/articles/defender-for-cloud/how-to-manage-cloud-security-explorer.md b/articles/defender-for-cloud/how-to-manage-cloud-security-explorer.md
@@ -23,10 +23,6 @@ Learn more about [the cloud security graph, attack path analysis, and the cloud
 
 - You must [enable Defender for CSPM](enable-enhanced-security.md).
 
-- You must [enable Defender for Containers](defender-for-containers-enable.md), and install the relevant agents in order to view attack paths that are related to containers. 
-
-    When you enable Defender for Containers, you also gain the ability to [query](how-to-manage-cloud-security-explorer.md#build-a-query-with-the-cloud-security-explorer) containers data plane workloads in the security explorer. 
-
 - Required roles and permissions: 
     - Security Reader
     - Security Admin
