Added preview disclaimers

yelevin · yelevin · commit 82e188380a87 · 2022-11-27T17:11:32.000+02:00
diff --git a/articles/sentinel/customize-alert-details.md b/articles/sentinel/customize-alert-details.md
@@ -19,6 +19,10 @@ With the **alert details** feature, you can override these and other default pro
 
 - Customize the severity, tactics, and other properties of a given instance of an alert (see the full list of properties below) with the values of any relevant fields from the query output. If the selected fields are empty or have values that don't match the field data type, the respective alert properties will revert to their defaults (for tactics and severity, those specified in the first page of the wizard).
 
+> [!IMPORTANT]
+> Some alert details' customizability (see those so indicated below) are currently in **PREVIEW**. See the [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/) for additional legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.
+
+
 Follow the procedure detailed below to use the alert details feature. These steps are part of the [analytics rule creation wizard](detect-threats-custom.md), but they're addressed here independently to address the scenario of adding or changing alert details in an existing analytics rule.
 
 ## How to customize alert details
@@ -53,15 +57,15 @@ Follow the procedure detailed below to use the alert details feature. These step
         - Description
         - AlertSeverity
         - Tactics
-        - Techniques (New)
-        - AlertLink (New)
-        - ConfidenceLevel (New)
-        - ConfidenceScore (New)
-        - ExtendedLinks (New)
-        - ProductComponentName (New)
-        - ProductName (New)
-        - ProviderName (New)
-        - RemediationSteps (New)
+        - Techniques (Preview)
+        - AlertLink (Preview)
+        - ConfidenceLevel (Preview)
+        - ConfidenceScore (Preview)
+        - ExtendedLinks (Preview)
+        - ProductComponentName (Preview)
+        - ProductName (Preview)
+        - ProviderName (Preview)
+        - RemediationSteps (Preview)
     
     If you change your mind, or if you made a mistake, you can remove an alert detail by clicking the trash can icon next to the **Alert property/Value** pair, or delete the free text from the **Alert Name/Description Format** fields.
 
diff --git a/articles/sentinel/whats-new.md b/articles/sentinel/whats-new.md
@@ -18,12 +18,12 @@ The listed features were released in the last three months. For information abou
 
 ## November 2022
 
-- [Customize more alert properties](#customize-more-alert-properties)
+- [Customize more alert properties (Preview)](#customize-more-alert-properties-preview)
 - [Common Event Format (CEF) via AMA (Preview)](#common-event-format-cef-via-ama-preview)
 - [Monitor the health of automation rules and playbooks](#monitor-the-health-of-automation-rules-and-playbooks)
 - [Updated Microsoft Sentinel Logstash plugin](#updated-microsoft-sentinel-logstash-plugin)
 
-### Customize more alert properties
+### Customize more alert properties (Preview)
 
 Alerts generated by a given analytics rule - and all incidents created as a result - inherit the name, description, severity, and tactics defined in the rule, without regard to the particular content of a specific instance of the alert.
 
