Make TL;DR callout clearer

sethvargo · web-flow · commit 10ab801896b8 · 2025-08-18T13:37:20.000-04:00
diff --git a/20250530.md b/20250530.md
@@ -1,17 +1,25 @@
 # Enforcing Secure 2FA Across the Alphabet Enterprise
 
-**TL;DR: 1) Add or verify Authenticator App is set in https://github.com/settings/security; and 2) Disable SMS / Text Message**
+<br>
+
+> [!IMPORTANT]
+> Visit https://github.com/settings/security:
+>
+> 1. Verify you have a **✅ secure** MFA method
+> 2. Remove all **❌ insecure** MFA methods, including SMS
+
+<br>
 
 As part of our ongoing efforts to secure Alphabet's source code, on June 30th 2025, we will **require all users accessing Alphabet-owned GitHub Organizations use only secure 2FA methods**.
 
-Secure methods include the following: 
+✅ **Secure** methods include:
 *  Authenticator Apps (TOTP)
 *  Passkeys
 *  Security Keys
 *  GitHub Mobile App (acting as 2fa)
 
 
-Insecure methods include the following:
+❌ **Insecure** methods include:
 *  SMS
 
 ## What will happen after this change?
