Merge pull request #1557 from MicrosoftDocs/main

chrisda · web-flow · commit f1deb05e8c4a · 2024-10-09T10:37:38.000-07:00
MicrosoftDocs/memdocs-pr#16314
diff --git a/defender-office-365/defender-for-office-365-whats-new.md b/defender-office-365/defender-for-office-365-whats-new.md
@@ -8,7 +8,7 @@ ms.author: chrisda
 author: chrisda
 manager: deniseb
 ms.localizationpriority: medium
-ms.date: 10/08/2024
+ms.date: 10/09/2024
 audience: ITPro
 ms.collection:
   - m365-security
@@ -48,6 +48,7 @@ For more information on what's new with other Microsoft Defender security produc
 - With one click, SecOps personnel can take a quarantine release action directly from Explorer (Threat Explorer) or the Email entity page (no need to go to the Quarantine page in the Defender portal). For more information, see [Remediate malicious email delivered in Office 365](remediate-malicious-email-delivered-office-365.md).
 - [Use the built-in Report button in Outlook](submissions-outlook-report-messages.md#use-the-built-in-report-button-in-outlook): The built-in **Report** button in Outlook for Mac v16.89 (24090815) or later now supports the [user reported settings](submissions-user-reported-messages-custom-mailbox.md) experience to report messages as Phishing, Junk, and Not Junk.
 - We're updating the end user experience for allow and block list management of their email messages. With one click, users can block email from unwanted senders and prevent those messages from appearing in their default quarantine view and in quarantine notifications. Users can also allow email from trusted and prevent future messages from those senders from being quarantined (if there are no admin overrides). Users also have visibility into any admin overrides that led to a quarantined email message. For more information, see [View quarantined email](quarantine-admin-manage-messages-files.md#view-quarantined-email).
+- Admins can see [policy](anti-spam-policies-configure.md#use-the-microsoft-defender-portal-to-modify-anti-spam-policies) what-if insights for the bulk complaint level (BCL) threshold, spoof, and impersonation settings, which lets them understand the implication of a setting change based on historical data. This capability lets admins confidently tune their settings without anxiety about possible repurcussions on users.
 
 ## August 2024
 
diff --git a/defender-office-365/tenant-allow-block-list-urls-configure.md b/defender-office-365/tenant-allow-block-list-urls-configure.md
@@ -15,7 +15,7 @@ ms.collection:
   - tier1
 description: Admins can learn how to allow or block URLs in the Tenant Allow/Block List.
 ms.service: defender-office-365
-ms.date: 07/18/2024
+ms.date: 10/09/2024
 appliesto:
   - ✅ <a href="https://learn.microsoft.com/defender-office-365/eop-about" target="_blank">Exchange Online Protection</a>
   - ✅ <a href="https://learn.microsoft.com/defender-office-365/mdo-about#defender-for-office-365-plan-1-vs-plan-2-cheat-sheet" target="_blank">Microsoft Defender for Office 365 Plan 1 and Plan 2</a>
@@ -347,6 +347,7 @@ Valid URL entries and their results are described in the following subsections.
 - **Allow not matched**:
   - abc-contoso.com
   - contoso.com/a
+  - abc.xyz.contoso.com/a/b/c
   - payroll.contoso.com
   - test.com/contoso.com
   - test.com/q=contoso.com
@@ -356,6 +357,7 @@ Valid URL entries and their results are described in the following subsections.
 - **Block match**:
   - contoso.com
   - contoso.com/a
+  - abc.xyz.contoso.com/a/b/c
   - payroll.contoso.com
   - test.com/contoso.com
   - test.com/q=contoso.com
