updating from review

eross-msft · eross-msft · commit c7a6c0ad83ad · 2019-12-09T10:54:11.000-08:00
diff --git a/articles/active-directory/fundamentals/whats-new.md b/articles/active-directory/fundamentals/whats-new.md
@@ -62,15 +62,15 @@ For more information about how to set up SAP SuccessFactors inbound provisioning
 
 ## November 2019
 
-### Support for the SameSite Attribute and Chrome 80
+### Support for the SameSite attribute and Chrome 80
 
 **Type:** Plan for change  
 **Service category:** Authentications (Logins)  
 **Product capability:** User Authentication
 
-As part of a secure-by-default model for cookies, the Chrome 80 browser is changing how it treats cookies without the **SameSite** attribute. Any cookie that doesn't specify the **SameSite** attribute as `SameSite=None` will be treated as though it was set to `SameSite=Lax`. If you use the `SameSite=None` attribute, you'll also need to add an additional `Secure` attribute so cross-site cookies can only be accessed over HTTPS connections.
+As part of a secure-by-default model for cookies, the Chrome 80 browser is changing how it treats cookies without the `SameSite` attribute. Any cookie that doesn't specify the `SameSite` attribute will be treated as though it was set to `SameSite=Lax`, which will result in Chrome blocking certain cross-domain cookie sharing scenarios that your app may depend on. To maintain the older Chrome behavior, you can use the `SameSite=None` attribute and add an additional `Secure` attribute, so cross-site cookies can only be accessed over HTTPS connections. Chrome is scheduled to complete this change by February 4, 2020.
 
-As part of this change, app developers must:
+We recommend all our developers test their apps using this guidance:
 
 - Set the default value for the **Use Secure Cookie** setting to **Yes**.
 
@@ -82,6 +82,18 @@ For more information, see [Upcoming SameSite Cookie Changes in ASP.NET and ASP.N
 
 ---
 
+### New hotfix for Microsoft Identity Manager (MIM) 2016 Service Pack 2 (SP2)
+
+**Type:** Fixed  
+**Service category:** Microsoft Identity Manager  
+**Product capability:** Identity Lifecycle Management
+
+A hotfix rollup package (build 4.6.34.0) is available for Microsoft Identity Manager (MIM) 2016 Service Pack 2 (SP2). This rollup package resolves issues and adds improvements that are described in the "Issues fixed and improvements added in this update" section.
+
+For more information and to download the hotfix package, see [Microsoft Identity Manager 2016 Service Pack 2 (build 4.6.34.0) Update Rollup is available](https://support.microsoft.com/help/4512924/microsoft-identity-manager-2016-service-pack-2-build-4-6-34-0-update-r).
+
+---
+
 ### New AD FS app activity report to help migrate apps to Azure AD (Public Preview)
 
 **Type:** New feature  
@@ -170,6 +182,20 @@ For more information about conditional access and SSO with Microsoft Edge, see t
 
 ---
 
+### Azure AD entitlement management (General Availability)
+
+**Type:** New feature  
+**Service category:** Other  
+**Product capability:** Entitlement Management
+
+Azure AD entitlement management is a new identity governance feature, which helps organizations manage identity and access lifecycle at scale. This new feature helps by automating access request workflows, access assignments, reviews, and expiration across groups, apps, and SharePoint Online sites.
+
+With Azure AD entitlement management, you can more efficiently manage access both for employees  and also for users outside your organization who need access to those resources.
+
+For more information, see [What is Azure AD entitlement management?](https://docs.microsoft.com/azure/active-directory/governance/entitlement-management-overview#license-requirements)
+
+---
+
 ### Automate user account provisioning for these newly supported SaaS apps
 
 **Type:** New feature  
@@ -198,32 +224,6 @@ For more information about the apps, see [SaaS application integration with Azur
 
 ---
 
-### Azure AD entitlement management (General Availability)
-
-**Type:** New feature  
-**Service category:** Other  
-**Product capability:** Entitlement Management
-
-Azure AD entitlement management is a new identity governance feature, which helps organizations manage identity and access lifecycle at scale. This new feature helps by automating access request workflows, access assignments, reviews, and expiration across groups, apps, and SharePoint Online sites.
-
-With Azure AD entitlement management, you can more efficiently manage access both for employees  and also for users outside your organization who need access to those resources.
-
-For more information, see [What is Azure AD entitlement management?](https://docs.microsoft.com/azure/active-directory/governance/entitlement-management-overview#license-requirements)
-
----
-
-### New hotfix for Microsoft Identity Manager (MIM) 2016 Service Pack 2 (SP2)
-
-**Type:** Fixed  
-**Service category:** Microsoft Identity Manager  
-**Product capability:** Identity Lifecycle Management
-
-A hotfix rollup package (build 4.6.34.0) is available for Microsoft Identity Manager (MIM) 2016 Service Pack 2 (SP2). This rollup package resolves issues and adds improvements that are described in the "Issues fixed and improvements added in this update" section.
-
-For more information and to download the hotfix package, see [Microsoft Identity Manager 2016 Service Pack 2 (build 4.6.34.0) Update Rollup is available](https://support.microsoft.com/help/4512924/microsoft-identity-manager-2016-service-pack-2-build-4-6-34-0-update-r).
-
----
-
 ### New and improved Azure AD application gallery
 
 **Type:** Changed feature  
