fix the description in the table

Author: DeCohen

CloudAppSecurityDocs/migrate-to-supported-api-solutions.md

@@ -28,15 +28,15 @@ The table below compares the legacy SIEM agent’s CEF fields to the nearest equ
 | `start`                               | Activity or alert timestamp                                 | `Timestamp`                                                                                      | `firstActivityDateTime`                                        |
 | `end`                                 | Activity or alert timestamp                                 | None                                                                                             | `lastActivityDateTime`                                         |
 | `rt`                                  | Activity or alert timestamp                                 | `createdDateTime`                                                                                | `createdDateTime` / `lastUpdateDateTime` / `resolvedDateTime`  |
-| `msg`                                 | Alert or activity description (human-readable)              | Closest structured fields: `actorDisplayName`, `ObjectName`, `ActionType`, `ActivityType`        | `description`                                                  |
+| `msg`                                 | Alert or activity description as shown in the portal in a human readable format             | The closest structured fields that contribute to a similar description: `actorDisplayName`, `ObjectName`, `ActionType`, `ActivityType`        | `description`                                                  |
 | `suser`                               | Activity or alert subject user                              | `AccountObjectId`, `AccountId`, `AccountDisplayName`                                             | See `userEvidence` resource type                               |
-| `destinationServiceName`              | Originating app (for example, SharePoint, Box)                     | `CloudAppEvents > Application`                                                                   | See `cloudApplicationEvidence` resource type                   |
-| `cs<X>Label`, `cs<X>`                 | Dynamic fields (for example, target user, object)                  | `Entities`, `Evidence`, `additionalData`, `ActivityObjects`                                      | Various `alertEvidence` resource types                         |
+| `destinationServiceName`              | Activity or alert from the originating app (for example, SharePoint, Box)                     | `CloudAppEvents > Application`                                                                   | See `cloudApplicationEvidence` resource type                   |
+| `cs<X>Label`, `cs<X>`                 | Alert or activity dynamic fields (for example, target user, object)                  | `Entities`, `Evidence`, `additionalData`, `ActivityObjects`                                      | Various `alertEvidence` resource types                         |
 | `EVENT_CATEGORY_*`                    | High-level activity category                                | `ActivityType` / `ActionType`                                                                    | `category`                                                     |
 | `<name>`                              | Matched policy name                                         | `Title`, `alertPolicyId`                                                                         | `Title`, `alertPolicyId`                                       |
 | `<ACTION>` (Activities)               | Specific activity type                                      | `ActionType`                                                                                     | N/A                                                            |
 | `externalId` (Activities)             | Event ID                                                    | `ReportId`                                                                                       | N/A                                                            |
-| `requestClientApplication` (activities)| User agent of client device                                | `UserAgent`                                                                                      | N/A                                                            |
+| `requestClientApplication` (activities)| User agent of the client device in activities                               | `UserAgent`                                                                                      | N/A                                                            |
 | `Dvc` (activities)                    | Client device IP                                            | `IPAddress`                                                                                      | N/A                                                            |
 | `externalId` (Alert)                  | Alert ID                                                    | `AlertId`                                                                                        | `id`                                                           |
 | `<alert type>`                        | Alert type (for example, ALERT_CABINET_EVENT_MATCH_AUDI)           | -                                                                                                | -                                                              |