GA fixes

Author: denisebmsft

defender-endpoint/rbac.md

@@ -66,9 +66,9 @@ To implement role-based access, you'll need to define admin roles, assign corres
 Before using RBAC, it's important that you understand the roles that can grant permissions and the consequences of turning on RBAC.
 
 > [!WARNING]
-> Before enabling the feature, it's important that you have a Global Administrator role or Security Administrator role in Microsoft Entra ID and that you have your Microsoft Entra groups ready to reduce the risk of being locked out of the portal.
+> Before enabling the feature, it's important that you have an appropriate role, such as Security Administrator assigned in Microsoft Entra ID, and that you have your Microsoft Entra groups ready to reduce the risk of being locked out of the portal.
 
-When you first sign in to the Microsoft Defender portal, you're granted either full access or read only access. Full access rights are granted to users with Security Administrator or Global Administrator roles in Microsoft Entra ID. Read only access is granted to users with a Security Reader role in Microsoft Entra ID.
+When you first sign in to the Microsoft Defender portal, you're granted either full access or read only access. Full access rights are granted to users with the Security Administrator role in Microsoft Entra ID. Read only access is granted to users with a Security Reader role in Microsoft Entra ID.
 
 Someone with a Defender for Endpoint Global Administrator role has unrestricted access to all devices, regardless of their device group association and the Microsoft Entra user groups assignments.
 

defender-endpoint/respond-file-alerts.md

@@ -166,10 +166,10 @@ The **Download file** button can have the following states:
   For Microsoft Defender for Endpoint role-based access control (RBAC):
 
     For Portable Executable file (.exe, .sys, .dll, and others)
-    - Global admin or Advanced live response or Alerts 
+    - Security Administrator or Advanced live response or Alerts 
 
     Non-Portable Executable file (.txt, .docx, and others) 
-    - Global admin or Advanced live response
+    - Security Administrator or Advanced live response
     - Tenants with [role-based access (RBAC) permissions](/defender-xdr/manage-rbac) enabled
 
 
@@ -212,10 +212,10 @@ The **Collect file** button can have the following states:
     The following permissions are required: 
 
     For Portable Executable file (.exe, .sys, .dll, and others)
-    - Global admin or Advanced live response or Alerts 
+    - Security Administrator or Advanced live response or Alerts 
 
     Non-Portable Executable file (.txt, .docx, and others) 
-    - Global admin or Advanced live response
+    - Security Administrator or Advanced live response
 
 
 If a file hasn't been seen in the organization in the past 30 days, **Collect file** is disabled.