Update rules/cross-platform/multiple_alerts_from_different_modules_by_srcip.toml

Co-authored-by: Mika Ayenson, PhD <[email protected]>

Author: Samirbous

rules/cross-platform/multiple_alerts_from_different_modules_by_srcip.toml

@@ -33,7 +33,7 @@ from .alerts-security.*  metadata _id
 | stats Esql.event_module_distinct_count = COUNT_DISTINCT(event.module),
         Esql.rule_name_distinct_count = COUNT_DISTINCT(kibana.alert.rule.name),
         Esql.event_category_distinct_count = COUNT_DISTINCT(event.category),
-        Esql.rule_severity_distinct_count = COUNT_DISTINCT(kibana.alert.risk_score),
+        Esql.rule_risk_score_distinct_count = COUNT_DISTINCT(kibana.alert.risk_score),
         Esql.event_module_values = VALUES(event.module),
         Esql.rule_name_values = VALUES(kibana.alert.rule.name),
         Esql.message_values = VALUES(message),