Removed unnecessary ref

nastasha-solomon · nastasha-solomon · commit e000d2d53a5d · 2024-10-27T23:38:34.000-04:00
diff --git a/docs/events/add-manage-notes.asciidoc b/docs/events/add-manage-notes.asciidoc
@@ -3,6 +3,8 @@
 
 Incorporate notes into your investigative workflows to coordinate responses, conduct threat hunting, and share investigative findings. You can attach notes to alerts, events, and Timeline and manage them from the **Notes** page. 
 
+NOTE: Configure the `securitySolution:maxUnassociatedNotes` <<max-notes-alerts-event,advanced setting>> to specify the maximum number of notes that you can attach to alerts and events. 
+
 [discrete]
 [[add-notes-documents]]
 == Add notes to alerts and events
@@ -16,30 +18,31 @@ Incorporate notes into your investigative workflows to coordinate responses, con
 [role="screenshot"]
 image::images/create-new-note.png[Creating a new note]
 
-A notification dot displays on alerts and events with notes. Hover over the **Add note** icon (image:images/create-note-icon.png[Add note,15,15]) to see how many notes are attached to the alert or event.
+In the Alerts or Events tables, a notification dot displays on alerts and events with notes. Hover over the **Add note** icon (image:images/create-note-icon.png[Add note,15,15]) to see how many notes are attached to the alert or event.
 
 [role="screenshot"]
 image::images/notes-notification.png[Notes notification marker on Alerts page]
 
-NOTE: Configure the `securitySolution:maxUnassociatedNotes` <<max-notes-alerts-event,advanced setting>> to specify the maximum number of <<add-manage-notes,notes>> that you can attach to alerts and events. 
-
 [discrete]
 [[add-notes-timelines]]
 == Add notes to Timelines
 
-There are two ways to add notes to an open Timeline: the **Notes** Timeline tab or the details flyout for alerts and events that you're investigating in Timeline. Also note that you can only add notes to saved Timelines.  
+IMPORTANT: You can only add notes to saved Timelines.  
+
+There are two ways to add notes to an open Timeline: the **Notes** Timeline tab or the details flyout for alerts and events that you're investigating in Timeline. 
 
 From the **Notes** Timeline tab, you can create a new note that's attached to the entire Timeline. From the details flyout, any notes that you add to alerts and events are automatically attached to the Timeline you're currently working on. If you only want to create a note for the alert or event, deselect the **Attach to current Timeline** option.
 
 [discrete]
 [[manage-notes]]
 == Find and manage notes 
 
-//Security solution view nav: Investigations -> Notes
-//Classic nav view: Manage -> Investigations -> Notes 
+//Will need to revisit the navigation instructions below. The nav path to the Notes page differs between the Classic nav view (Manage -> Investigations -> Notes) and the Security solution view (Investigations -> Notes)
 
 The **Notes** page allows you to view and interact with all existing notes. To access the page, find **Investigations** in the main menu or look for “Investigations” using the {kibana-ref}/introduction.html#kibana-navigation-search[global search field], then go to **Notes**.
 
+TIP: You can also manage notes for alerts, events, and Timelines from the **Notes** <<expanded-notes-view,tab>> in the details flyout or in Timeline.
+
 [role="screenshot"]
 image::images/notes-management-page.png[Notes management page]
 
@@ -52,5 +55,3 @@ From the Notes table, you can:
 * Delete individual or multiple notes 
 * Examine the alert or event that a note is attached to
 * Open the note in Timeline (this option is only available for alerts or events with notes attached to a saved Timeline) 
-
-TIP: You can also manage notes for individual alerts, events, and Timelines from the **Notes** tab in the details flyout or Timeline.
diff --git a/docs/serverless/investigate/add-manage-notes.mdx b/docs/serverless/investigate/add-manage-notes.mdx
@@ -10,6 +10,10 @@ tags: ["serverless","security","how-to","manage"]
 
 Incorporate notes into your investigative workflows to coordinate responses, conduct threat hunting, and share investigative findings. You can attach notes to alerts, events, and Timeline and manage them from the **Notes** page. 
 
+<DocCallOut title="Note">
+Configure the `securitySolution:maxUnassociatedNotes` <DocLink slug="/serverless/security/advanced-settings" section="max-notes-alerts-events">advanced settings</DocLink> to specify the maximum number of notes that you can attach to alerts and events.
+</DocCallOut>
+
 <div id="add-notes-documents"></div>
 
 ## Add notes to alerts and events 
@@ -22,19 +26,19 @@ Incorporate notes into your investigative workflows to coordinate responses, con
 
    <DocImage size="xl" url="../images/notes/-notes-create-new-note.png" alt="Creating a new note"/>
 
-A notification dot displays on alerts and events with notes. Hover over the **Add note** icon (<DocIcon type="editorComment" title="The icon that lets you to add a new note" />) to see how many notes are attached to the alert or event.
+In the Alerts or Events tables, a notification dot displays on alerts and events with notes. Hover over the **Add note** icon (<DocIcon type="editorComment" title="The icon that lets you to add a new note" />) to see how many notes are attached to the alert or event.
 
 <DocImage size="xl" url="../images/notes/-notes-notification.png" alt="Notes notification marker on Alerts page"/>
 
-<DocCallOut title="Note">
-Configure the `securitySolution:maxUnassociatedNotes` <DocLink slug="/serverless/security/advanced-settings" section="max-notes-alerts-events">advanced settings</DocLink> to specify the maximum number of notes that you can attach to alerts and events.
-</DocCallOut>
-
 <div id="add-notes-timelines"></div>
 
 ## Add notes to Timelines
 
-There are two ways to add notes to an open Timeline: the **Notes** Timeline tab or the details flyout for alerts and events that you're investigating in Timeline. Also note that you can only add notes to saved Timelines.  
+<DocCallOut title="Important" color="warning">
+You can only add notes to saved Timelines.
+</DocCallOut>
+
+There are two ways to add notes to an open Timeline: the **Notes** Timeline tab or the details flyout for alerts and events that you're investigating in Timeline. 
 
 From the **Notes** Timeline tab, you can create a new note that's attached to the entire Timeline. From the details flyout, any notes that you add to alerts and events are automatically attached to the Timeline you're currently working on. If you only want to create a note for the alert or event, deselect the **Attach to current Timeline** option.
 
@@ -44,6 +48,10 @@ From the **Notes** Timeline tab, you can create a new note that's attached to th
 
 The **Notes** page allows you to view and interact with all existing notes. To access the page, find **Investigations** in the main menu, then go to **Notes**.
 
+<DocCallOut title="Tip">
+You can manage notes for alerts, events, and Timelines from the **Notes** <DocLink slug="/serverless/security/view-alert-details" section="expanded-notes-view">tab</DocLink> in the details flyout or in Timeline.
+</DocCallOut>
+
 <DocImage size="xl" url="../images/notes/-notes-management-page.png" alt="Notes management page"/>
 
 From the Notes table, you can:
@@ -54,7 +62,3 @@ From the Notes table, you can:
 * Delete individual or multiple notes 
 * Examine the alert or event that a note is attached to
 * Open the note in Timeline (this option is only available for alerts or events with notes attached to a saved Timeline) 
-
-<DocCallOut title="Tip">
-You can manage notes for individual alerts, events, and Timelines from the **Notes** tab in the details flyout or Timeline.
-</DocCallOut>
