docs(website): new guide on keeping Serenity/JS projects up to date

Author: jan-molak

src/docs/handbook/getting-started/installation.mdx

@@ -266,7 +266,7 @@ npm install --save-dev ^
 Please make sure to always update your Serenity/JS dependencies together and use the same version number for all the `@serenity-js/*` modules
 your project depends on.
 
-Learn more about [Serenity/JS versioning](/releases/versioning/) and see the [latest releases](/releases/).
+Learn more about [Serenity/JS versioning strategy](/releases/versioning/), see the [latest releases](/releases/) and learn how to [keep your Serenity/JS project up to date](/releases/updating-serenity-js).
 :::
 
 If your machine is part of a corporate network and doesn't have direct access to npmjs.com, you should be able to download
@@ -292,4 +292,4 @@ If you ever get stuck setting up a Serenity/JS project from scratch, make sure t
 - [Serenity/JS Project Templates](/handbook/getting-started/project-templates/)
 - [Serenity/JS Examples and Reference Implementations](https://github.com/serenity-js/serenity-js/tree/main/examples)
 
-Also, remember to join the [Serenity/JS Community chat](https://matrix.to/#/#serenity-js:gitter.im) where you can meet fellow Serenity/JS developers who might be able to help you out.
+Also, remember to join the [Serenity/JS Community chat](https://matrix.to/#/#serenity-js:gitter.im) where you can meet fellow Serenity/JS developers who might be able to help you out.

src/docs/releases/updating-serenity-js.mdx

@@ -0,0 +1,134 @@
+---
+sidebar_position: 3
+title: Updating Serenity/JS
+---
+
+
+Staying up-to-date with the latest version of Serenity/JS is essential to ensure your test automation framework is equipped with the latest features,
+performance improvements, and critical security patches.
+Regular updates help avoid technical debt, reduce the risk of using deprecated features, and ensure compatibility with the latest tools and platforms.
+
+In this guide, we’ll explore the best approaches for staying up-to-date with Serenity/JS.
+
+## Using flexible version ranges
+
+Configuring your `package.json` to use the `3.x` version range for Serenity/JS modules allows your Node package manager, like
+[NPM](https://nodejs.org/en/learn/getting-started/an-introduction-to-the-npm-package-manager),
+[Yarn](https://classic.yarnpkg.com/lang/en/docs/install/),
+or [PNPM](https://pnpm.io/), to install the latest compatible versions automatically.
+
+### Example configuration
+
+```json title="package.json"
+{
+  "devDependencies": {
+    "@serenity-js/core": "3.x",
+    "@serenity-js/assertions": "3.x",
+    "@serenity-js/rest": "3.x",
+    "@serenity-js/playwright": "3.x",
+    "@serenity-js/playwright-test": "3.x",
+    "@serenity-js/serenity-bdd": "3.x",
+    "@serenity-js/web": "3.x"
+  }
+}
+```
+
+### Benefits
+
+- **Automation**: Your package manager will automatically install the latest compatible versions of your dependencies during a fresh npm install,
+  it will also update its lock file to reflect the exact versions installed.
+- **Ease of use**: No manual intervention is required to update dependencies within the specified range.
+- **Predictability**: Your package manager will ensure compatibility since the version constraint (3.x) avoids breaking changes introduced by major version updates.
+
+### Disadvantages
+
+- **No explicit control**: Updates occur implicitly when installing dependencies, which may not align with your preferred schedule.
+- **Possible discrepancies**: If team members or CI pipelines use different node_modules states, discrepancies may arise.
+
+### Recommendation
+
+This approach is recommended for simple project or those without strict update policies.
+To mitigate the disadvantages, make sure to keep the lock file generated by your package manager under version control.
+
+## Updating Serenity/JS modules manually
+
+For teams who want direct control over their dependencies, using [`npm-check-updates`](https://www.npmjs.com/package/npm-check-updates)
+allows to manually update all Serenity/JS dependencies when needed.
+
+To update all Serenity/JS dependencies listed in your `package.json` file to the latest versions, run the following command:
+
+```npm
+npx -y npm-check-updates '/@serenity-js/' -u
+```
+
+You can also extend this command to update all dependencies in your `package.json`:
+
+```npm
+npx -y npm-check-updates -u
+```
+
+After updating `package.json`, install the dependencies:
+
+```sh npm2yarn
+npm install
+```
+
+### Benefits
+
+- **Control**: You decide when and which dependencies to update, ensuring alignment with your development schedule.
+- **Granularity**: Allows selective updates, ideal for projects that require stability or when testing compatibility with other tools.
+- **Transparency**: Changes to dependencies are explicitly visible in your commit history.
+
+### Disadvantages
+
+- **Manual effort**: Requires time and attention to run updates and review changes.
+- **Inconsistent timing**: Updates may be delayed if not regularly checked, potentially missing critical patches.
+
+### Recommendation
+
+This approach is recommended for projects with strict update policies or those requiring compatibility testing with other tools.
+To mitigate the disadvantages, consider using a dependency management bot.
+
+## Using a dependency management bot
+
+Dependency management bots like [Renovate](https://docs.renovatebot.com/) or [Dependabot](https://docs.github.com/en/code-security/getting-started/dependabot-quickstart-guide) automate
+the process of checking for updates and proposing pull requests.
+
+### Benefits
+
+- **Proactive updates**: Ensures timely adoption of new features, fixes, and patches.
+- **Streamlined workflow**: Automates the creation of pull requests with changelogs for easy review.
+- **Security**: Helps identify and update dependencies with critical security vulnerabilities.
+- **Customisability**: Configure the bot to match your team’s update policies (e.g., daily/weekly schedules, dependency groups).
+
+### Disadvantages
+
+- **Requires setup**: Initial configuration might require effort, especially for complex projects.
+- **Possible noise**: If bots are not configured correctly, they might create overly granular or too frequent pull requests.
+
+### Recommendation
+
+This approach is used by Serenity/JS and is recommended for larger teams or projects that require both stability and regular updates.
+
+To mitigate the disadvantages, use a configuration file that groups Serenity/JS-related dependencies and sets update policies.
+For example, you can use the below file to [configure Renovate](https://docs.renovatebot.com/configuration-options/):
+
+```json title="renovate.json"
+{
+  "extends": [
+    "config:base"
+  ],
+  "rangeStrategy": "bump",
+  "packageRules": [
+    {
+      "packagePatterns": [
+        "^@serenity-js",
+        "^playwright$",
+        "^@playwright/",
+        "npm-failsafe"
+      ],
+      "groupName": "Serenity/JS and Playwright",
+    }
+  ]
+}
+```

src/docs/releases/versioning.mdx

@@ -1,5 +1,5 @@
 ---
-sidebar_position: 5
+sidebar_position: 2
 title: Versioning strategy
 ---
 
@@ -19,29 +19,10 @@ New minor and patch versions of Serenity/JS modules are typically released [at l
 but typically more frequently to help ensure the framework is up-to-date
 with any [security fixes](https://snyk.io/test/github/serenity-js/serenity-js) and patches to its dependencies
 
-:::info Stay up to date!
+:::info Stay up to date
 The easiest way to stay up to date with the latest features and bug fixes is to **always use the latest version of your chosen Serenity/JS modules**.
-:::
 
-To stay up to date, set the required version of each Serenity/JS module to `3.x` in your `package.json` file, for example:
-
-```json title="package.json"
-{
-  "devDependencies": {
-    "@serenity-js/core": "3.x",
-    "@serenity-js/assertions": "3.x",
-    "@serenity-js/rest": "3.x",
-    "@serenity-js/playwright": "3.x",
-    "@serenity-js/playwright-test": "3.x",
-    "@serenity-js/serenity-bdd": "3.x",
-    "@serenity-js/web": "3.x"
-  }
-}
-```
-
-:::info Use a bot to update your dependencies automatically
-Use a dependency management bot like [Renovate](https://docs.renovatebot.com/) or [Dependabot](https://docs.github.com/en/code-security/getting-started/dependabot-quickstart-guide)
-to stay up-to-date with the new features, bug fixes, and security patches.
+Learn how to [keep your Serenity/JS project up to date](/releases/updating-serenity-js).
 :::
 
 ## Deprecated APIs