Merge branch 'main' of https://github.com/MicrosoftDocs/defender-docs-pr into WI493429-standardizing-mde-operating-systems

Author: DeCohen

defender-for-cloud-apps/protect-smartsheet.md

@@ -1,7 +1,7 @@
 ---
 title: Protect your Smartsheet | Microsoft Defender for Cloud Apps
 description: Learn how about connecting your Smartsheet app to Defender for Cloud Apps using the API connector.
-ms.date: 12/06/2023
+ms.date: 10/05/2025
 ms.topic: how-to
 ms.reviewer: AmitMishaeli
 ---
@@ -64,16 +64,16 @@ This section describes how to connect Microsoft Defender for Cloud Apps to your
 
 ### Prerequisites
 
+- You must have a Smartsheet license that is part of an Enterprise plan with the Platinum package.
 - The Smartsheet user used to log in to Smartsheet must be a System Admin.
 - Event Reporting must be enabled by Smartsheet, either through standalone purchase or via an Enterprise plan with the Advance Platinum package.
+- Smartsheet accounts must be in the **smartsheet.com** domain. These domains are not currently supported:
+    - smartsheet.au
+    - smartsheet.eu
+    - smartsheetgov.com
 
 ### Configure Smartsheet
 
->[!NOTE]
->The Smartsheet license must be an Enterprise plan with the Platinum package.
->
->Smartsheet accounts hosted in the EU region (the .eu domain suffix) aren't currently supported.
-
 1. Register to add Developer Tools to your existing Smartsheet account:
     1. Go to the [Developer Sandbox Account Registration](https://developers.smartsheet.com/register/) page.
 
@@ -101,12 +101,6 @@ This section describes how to connect Microsoft Defender for Cloud Apps to your
     - **App URL**: `https://portal.cloudappsecurity.com`
     - **App contact/support**: `https://learn.microsoft.com/cloud-app-security/support-and-ts`
     - **App redirect URL**: `https://portal.cloudappsecurity.com/api/oauth/saga`
-
-      > [!NOTE]
-      >
-      > - For US Government GCC customers, enter the following value: `https://portal.cloudappsecuritygov.com/api/oauth/saga`
-      > - For US Government GCC High customers, enter the following value: `https://portal.cloudappsecurity.us/api/oauth/saga`
-
     - **Publish App?**: Select.
     - **Logo**: Leave blank.
 

defender-vulnerability-management/whats-new-in-microsoft-defender-vulnerability-management.md

@@ -23,7 +23,11 @@ This article provides information about new features and important product updat
 
 ## October 2025
 
-- (Preview) You can now use CVE exceptions to exclude specific Common Vulnerabilities and Exposures (CVEs) from analysis in your environment. CVE exceptions allow you to control what type of data is relevant to your organization and to selectively exclude certain data from your remediation efforts. For more information, see [Exceptions in Microsoft Defender Vulnerability Management](tvm-exception-overview.md) and [Create, view, and manage exceptions](tvm-exception.md).
+- (Preview) You can now use **CVE exceptions** to exclude specific Common Vulnerabilities and Exposures (CVEs) from analysis in your environment. CVE exceptions allow you to control what type of data is relevant to your organization and to selectively exclude certain data from your remediation efforts. For more information, see [Exceptions in Microsoft Defender Vulnerability Management](tvm-exception-overview.md) and [Create, view, and manage exceptions](tvm-exception.md).
+- (Preview) **Microsoft Secure Score now includes new recommendations** to help organizations proactively prevent common endpoint attack techniques.
+    - **Block web shell creation on servers** – reduces the risk of web-based persistence and remote code execution attacks.
+    - **Block use of copied or impersonated system tools** – helps prevent attacker misuse of legitimate administrative utilities for lateral movement or privilege escalation.
+    - **Block rebooting a machine in Safe Mode** – helps defend against attackers who attempt to disable endpoint protection or persist through reboots.
 
 ## November 2024