Update alert-policies.md

Author: denisebmsft

defender-xdr/alert-policies.md

@@ -187,7 +187,7 @@ The tables also indicate the Office 365 Enterprise and Office 365 US Government
 |**Form flagged and confirmed as phishing**|Generates an alert when a form created in Microsoft Forms from within your organization is identified as potential phishing through Report Abuse and confirmed as phishing by Microsoft.|High|No|E1, E3/F3, or E5|
 |**Malware not zapped because ZAP is disabled**| Generates an alert when Microsoft detects delivery of a malware message to a mailbox because Zero-Hour Auto Purge for Phish messages is disabled.|Informational|No|E5/G5 or Defender for Office 365 Plan 2 add-on subscription.|
 |**Messages containing malicious entity not removed after delivery**|Generates an alert when any message containing malicious content (file, URL, campaign, no entity), is delivered to mailboxes in your organization. If this event occurs, Microsoft attempted to remove the infected messages from Exchange Online mailboxes using [Zero-hour auto purge](/microsoft-365/security/office-365-security/zero-hour-auto-purge), but the message wasn't removed due to a failure. Additional investigation is recommended. This policy automatically triggers [automated investigation and response in Office 365](/microsoft-365/security/office-365-security/air-about).|Medium|Yes|Microsoft 365 Business Premium, Defender for Office 365 Plan 1 add-on, E5/G5, or Defender for Office 365 Plan 2 add-on.|
-|**MIP AutoLabel simulation completed**|Generates an alert when an[service-side auto-labeling policy in simulation mode](mip-easy-trials.md#service-side-auto-labeling) has completed.|Low|No|E5/G5.|
+|**MIP AutoLabel simulation completed**|Generates an alert when an[service-side auto-labeling policy in simulation mode](/purview/mip-easy-trials#service-side-auto-labeling) has completed.|Low|No|E5/G5.|
 |**Phish delivered due to an ETR override**<sup>1</sup>|Generates an alert when Microsoft detects an Exchange transport rule (also known as a mail flow rule) that allowed delivery of a high confidence phishing message to a mailbox. For more information about Exchange Transport Rules (Mail flow rules), see [Mail flow rules (transport rules) in Exchange Online](/exchange/security-and-compliance/mail-flow-rules/mail-flow-rules).|Informational|No|E1/F1/G1, E3/F3/G3, or E5/G5|
 |**Phish delivered due to an IP allow policy**<sup>1</sup>|Generates an alert when Microsoft detects an IP allow policy that allowed delivery of a high confidence phishing message to a mailbox. For more information about the IP allow policy (connection filtering), see [Configure the default connection filter policy - Office 365](/microsoft-365/security/office-365-security/connection-filter-policies-configure).|Informational|No|E1/F1/G1, E3/F3/G3, or E5/G5|
 |**Phish not zapped because ZAP is disabled**<sup>1</sup>|Generates an alert when Microsoft detects delivery of a high confidence phishing message to a mailbox because Zero-Hour Auto Purge for Phish messages is disabled.|Informational|No|E5/G5 or Defender for Office 365 Plan 2 add-on subscription.|