[Serverless]: Security – About detection rules (#6239)

nastasha-solomon · web-flow · commit 42f1798ac238 · 2025-01-09T15:05:33.000-05:00
* First draft

* updates note
diff --git a/docs/serverless/rules/about-rules.asciidoc b/docs/serverless/rules/about-rules.asciidoc
@@ -61,7 +61,7 @@ When you create a rule, you must either specify the {es} index pattens for which
 
 [NOTE]
 ====
-To access data views, ensure you have the {kibana-ref}/data-views.html#data-views-read-only-access[required permissions].
+To access data views, you need either the appropriate <<general-assign-user-roles,predefined Security user role>> or a <<custom-roles,custom role>> with the right privileges.
 ====
 
 [discrete]
@@ -74,7 +74,7 @@ For both prebuilt and custom rules, you can send notifications when alerts are c
 [[alerting-authorization-model]]
 == Authorization
 
-Rules, including all background detection and the actions they generate, are authorized using an {kibana-ref}/api-keys.html[API key] associated with the last user to edit the rule. Upon creating or modifying a rule, an API key is generated for that user, capturing a snapshot of their privileges. The API key is then used to run all background tasks associated with the rule including detection checks and executing actions.
+Rules, including all background detection and the actions they generate, are authorized using an <<api-keys,API key>> associated with the last user to edit the rule. Upon creating or modifying a rule, an API key is generated for that user, capturing a snapshot of their privileges. The API key is then used to run all background tasks associated with the rule including detection checks and executing actions.
 
 [IMPORTANT]
 ====
