Small fixes from PR review

bmansheim · bmansheim · commit bf264f2b9157 · 2023-02-27T10:42:55.000+02:00
diff --git a/articles/defender-for-cloud/adaptive-application-controls.md b/articles/defender-for-cloud/adaptive-application-controls.md
@@ -175,13 +175,13 @@ To remediate the issues:
 
 1. To investigate further, select a group.
 
-   ![Recent alerts.](./media/adaptive-application/recent-alerts.png)
+    :::image type="content" source="media/adaptive-application/recent-alerts.png" alt-text="Screenshot showing recent alerts.":::
 
 1. For further details, and the list of affected machines, select an alert.
 
     The security alerts page shows more details of the alerts and provides a **Take action** link with recommendations of how to mitigate the threat.
 
-    :::image type="content" source="media/adaptive-application/adaptive-application-alerts-start-time.png" alt-text="The start time of adaptive application controls alerts is the time that adaptive application controls created the alert.":::
+    :::image type="content" source="media/adaptive-application/adaptive-application-alerts-start-time.png" alt-text="Screenshot of the start time of adaptive application controls alerts showing that the time is when adaptive application controls created the alert.":::
 
     > [!NOTE]
     > Adaptive application controls calculates events once every twelve hours. The "activity start time" shown in the security alerts page is the time that adaptive application controls created the alert, **not** the time that the suspicious process was active.
diff --git a/articles/defender-for-cloud/defender-for-containers-vulnerability-assessment-elastic.md b/articles/defender-for-cloud/defender-for-containers-vulnerability-assessment-elastic.md
@@ -16,7 +16,7 @@ To enable scanning of vulnerabilities in containers, you have to [connect your A
 
 Defender for Containers creates resources in your AWS account to build an inventory of the software in your images. The scan then sends only the software inventory to Defender for Cloud. This architecture protects your information privacy and intellectual property, and also keeps the outbound network traffic to a minimum.
 
-These resources are created under us-east-1 and eu-central-1 in each AWS account where container vulnerability assesment is enabled:
+These resources are created under us-east-1 and eu-central-1 in each AWS account where container vulnerability assessment is enabled:
 
 - **S3 bucket** with the prefix `defender-for-containers-va`
 - **ECS cluster** with the name `defender-for-containers-va`
diff --git a/articles/defender-for-cloud/faq-general.yml b/articles/defender-for-cloud/faq-general.yml
@@ -102,8 +102,8 @@ sections:
         answer: |
           Azure Subscriptions may have multiple administrators with permissions to change the pricing settings. To find out which user made a change, use the Azure Activity Log.
 
-          :::image type="content" source="media/faq-general/logged-change-to-pricing.png" alt-text="Azure Activity log showing a pricing change event.":::
+          :::image type="content" source="media/faq-general/logged-change-to-pricing.png" alt-text="Screenshot of Azure Activity log showing a pricing change event.":::
 
           If the user's info isn't listed in the **Event initiated by** column, explore the event's JSON for the relevant details.
 
-          :::image type="content" source="media/faq-general/tracking-pricing-changes-in-activity-log.png" alt-text="Azure Activity log JSON explorer.":::
+          :::image type="content" source="media/faq-general/tracking-pricing-changes-in-activity-log.png" alt-text="Screenshot of Azure Activity log JSON explorer.":::
diff --git a/articles/defender-for-cloud/plan-defender-for-servers.md b/articles/defender-for-cloud/plan-defender-for-servers.md
@@ -61,7 +61,7 @@ When you enable [Microsoft Defender for Servers](defender-for-servers-introducti
 | Deallocating | This state is transitional. When completed, the VM will show as Deallocated.                                                                             | Not billed            |
 | Deallocated  | The VM has been stopped successfully and removed from the host.                                                                                  | Not billed            |
 
-:::image type="content" source="media/plan-defender-for-servers/deallocated-virtual-machines.png" alt-text="Azure Virtual Machines showing a deallocated machine.":::
+:::image type="content" source="media/plan-defender-for-servers/deallocated-virtual-machines.png" alt-text="Screenshot of Azure Virtual Machines showing a deallocated machine.":::
 
 ### If I already have a license for Microsoft Defender for Endpoint, can I get a discount for Defender for Servers?
 
