updated mitigations

Author: poliveria

defender-endpoint/threat-analytics-analyst-reports.md

@@ -110,7 +110,9 @@ Microsoft Sentinel has powerful hunting search and query tools to hunt for secur
 
 Threat analytics dynamically tracks the [status of security updates](threat-analytics.md#endpoints-exposure-know-the-deployment-status-of-security-updates) and [secure configurations](threat-analytics.md#recommended-actions-review-list-of-mitigations-and-the-status-of-your-devices). These types of information are available as charts and tables in the **Endpoints exposures** and **Recommended actions** tabs.
 
-In addition to these tracked mitigations, the analyst report also discusses mitigations that are _not_ dynamically monitored. Here are some examples of important mitigations that aren't dynamically tracked:
+In addition to these tracked recommendations, the analyst report could also discuss mitigations that are *not* dynamically monitored because they’re specific to just the threat or situation being discussed in the report. [Microsoft Secure Score](/defender-xdr/microsoft-secure-score) and [Microsoft Security Exposure Management](/security-exposure-management/microsoft-security-exposure-management) are looking at incorporating recommendations that are repeatable and applicable to the most customers.
+
+Here are some examples of important mitigations that aren’t dynamically tracked:
 
 - Block emails with _.lnk_ attachments or other suspicious file types
 - Randomize local administrator passwords

defender-xdr/threat-analytics-analyst-reports.md

@@ -112,7 +112,9 @@ Microsoft Sentinel has powerful hunting search and query tools to hunt for secur
 
 Threat analytics dynamically tracks the [status of security updates](threat-analytics.md#endpoints-exposure-know-the-deployment-status-of-security-updates) and [secure configurations](threat-analytics.md#recommended-actions-review-list-of-mitigations-and-the-status-of-your-devices). These types of information are available as charts and tables in the **Endpoints exposures** and **Recommended actions** tabs.
 
-In addition to these tracked mitigations, the analyst report also discusses mitigations that are _not_ dynamically monitored. Here are some examples of important mitigations that aren't dynamically tracked:
+In addition to these tracked recommendations, the analyst report could also discuss mitigations that are *not* dynamically monitored because they’re specific to just the threat or situation being discussed in the report. [Microsoft Secure Score](microsoft-secure-score.md) and [Microsoft Security Exposure Management](/security-exposure-management/microsoft-security-exposure-management) are looking at incorporating recommendations that are repeatable and applicable to the most customers.
+
+Here are some examples of important mitigations that aren’t dynamically tracked:
 
 - Block emails with _.lnk_ attachments or other suspicious file types
 - Randomize local administrator passwords