Addressing comments

Author: kenieva

articles/governance/policy/concepts/effects.md

@@ -464,16 +464,17 @@ assignment.
 
 `Microsoft.Authorization/policyAssignments`, `Microsoft.Authorization/denyAssignments`, `Microsoft.Blueprint/blueprintAssignments`, `Microsoft.Resources/deploymentStacks`, and `Microsoft.Authorization/locks` are all exempt from DenyAction enforcement to prevent lockout scenarios. 
 
-Under preview, assignments with `denyAction` effect will show a `Not Started` compliance state.
+> [!NOTE]
+> Under preview, assignments with `denyAction` effect will show a `Not Started` compliance state.
 
-**Subscription deletion**
+#### Subscription deletion
 Policy won't block removal of resources that happens during a subscription deletion. 
 
-**Resource group deletion** 
+#### Resource group deletion 
 Policy will evaluate resources that support location and tags against `DenyAction` policies during a resource group deletion. Only policies that have the `cascadeBehaviors` set to `deny` in the policy rule will block a resource group deletion. Policy won't block removal of resources that don't support location and tags nor any policy with `mode:all`. 
 
-**Cascade Deletion** 
-Cascade Deletion occurs when deleting of a parent resource is implicitly deletes all its child resources. Policy won't block removal of child resources when a delete action targets the parent resources. For example, `Microsoft.Insights/diagnosticSettings` is a child resource of `Microsoft.Storage/storageaccounts`. If a `denyAction` policy targets `Microsoft.Insights/diagnosticSettings`, a delete call to the diagnostic setting (child) will fail, but a delete to the storage account (parent) will implicitly delete the diagnostic setting (child). 
+#### Cascade deletion
+Cascade deletion occurs when deleting of a parent resource is implicitly deletes all its child resources. Policy won't block removal of child resources when a delete action targets the parent resources. For example, `Microsoft.Insights/diagnosticSettings` is a child resource of `Microsoft.Storage/storageaccounts`. If a `denyAction` policy targets `Microsoft.Insights/diagnosticSettings`, a delete call to the diagnostic setting (child) will fail, but a delete to the storage account (parent) will implicitly delete the diagnostic setting (child). 
 
 [!INCLUDE [policy-denyAction](../../../../includes/azure-policy-denyAction.md)]
 

includes/azure-policy-denyAction.md

@@ -8,13 +8,13 @@ ms.date: 11/28/2022
 ms.author: kenieva
 ---
 
-This table describes if a resource will be protected from deletion given the resource applicable to the assigned denyAction policy and the targeted scope of the DELETE call. In the context of this table, an indexed  is a resource that supports tags and locations. Non-indexed is a resource that doesn't support tags or locations. For more information on indexed and non-indexed resources,  reference [definition modes](../articles/governance/policy/concepts/definition-structure.md). Child resources are resources that exist only within the context of another resource. For example, a virtual machines extension resource is a child of the virtual machine, whom is the parent resource. 
+This table describes if a resource will be protected from deletion given the resource applicable to the assigned denyAction policy and the targeted scope of the DELETE call. In the context of this table, an indexed resource is one that supports tags and locations and a non-indexed resource is one that doesn't support tags or locations. For more information on indexed and non-indexed resources,  reference [definition modes](../articles/governance/policy/concepts/definition-structure.md). Child resources are resources that exist only within the context of another resource. For example, a virtual machines extension resource is a child of the virtual machine, whom is the parent resource. 
 
-| Resource applicable to DenyAction definition | Delete call targeted scope | Action taken |
+| Entity being deleted| Entity applicable to policy conditions | Action taken |
 |---|---|---|
 | Resource | Resource | Protected |
-| Resource | Subscription | Deleted |
-| Indexed resource | Resource group| Depends on `cascadeBehaviors` |
-| Non indexed resource | Resource group | Deleted |
-| Parent resource | Child resource | Parent is protected; child is deleted |
-| Child resource | Parent resource | Deleted |
+| Subscription | Resource | Deleted |
+| Resource group | Indexed resource| Depends on `cascadeBehaviors` |
+| Resource group | Non indexed resource| Deleted |
+| Child resource | Parent resource | Parent is protected; child is deleted |
+| Parent resource | Child resource | Deleted |