Merge pull request #2365 from YongRhee-MSFT/docs-editor/incident-response-overview-1736362091

Update incident-response-overview.md

Author: diannegali

defender-xdr/incident-response-overview.md

@@ -51,7 +51,12 @@ For more information, see [Automated investigation and response in Microsoft Def
 
 It's not enough to respond to attacks as they occur. For extended, multi-phase attacks such as ransomware, you must proactively search for the evidence of an attack in progress and take action to stop it before it completes.
 
-Advanced hunting is a query-based threat hunting tool in Microsoft Defender XDR that lets you explore up to 30 days of raw data. You can proactively inspect events in your network to locate threat indicators and entities. This flexible access to the Microsoft Defender XDR data enables unconstrained hunting for both known and potential threats.
+Advanced hunting is a query-based threat hunting tool in Microsoft Defender XDR that lets you explore up to 30 days of raw data. You can proactively inspect events in your network to locate threat indicators and entities. 
+
+> [!TIP]
+> You can extend the 30 days of raw data of advanced hunting using [Microsoft XDR Streaming API](/defender-xdr/streaming-api) and [Microsoft Defender for Endpoint Streaming API](/defender-endpoint/api/raw-data-export).
+
+This flexible access to the Microsoft Defender XDR data enables unconstrained hunting for both known and potential threats.
 
 You can use the same threat hunting queries to build custom detection rules. These rules run automatically to check for and then respond to suspected breach activity, misconfigured machines, and other findings.