Prebuilt rule customization - per-field rule diffs (classic ESS) (#4871…

…) (#4873) * Update prebuilt-rules-update-diff.png * Update prebuilt-rules-management.asciidoc * Update docs/detections/prebuilt-rules-management.asciidoc (cherry picked from commit daf5aba) Co-authored-by: Joe Peeples <[email protected]>
elastic · Mar 5, 2024 · 1e0f67a · 1e0f67a
1 parent 537a440
commit 1e0f67a
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 1 deletion.
diff --git a/docs/detections/images/prebuilt-rules-update-diff.png b/docs/detections/images/prebuilt-rules-update-diff.png
diff --git a/docs/detections/prebuilt-rules-management.asciidoc b/docs/detections/prebuilt-rules-management.asciidoc
@@ -101,7 +101,7 @@ image::images/prebuilt-rules-update.png[The Rule Updates tab on the Rules page]
 
 . (Optional) To examine the details of a rule's latest version before you update it, select the rule name. This opens the rule details flyout.
 +
-The *Updates* tab displays a side-by-side JSON comparison of the rule's *Base version* (what you currently have installed) and the *Update* version that you can choose to install. Deleted characters are highlighted in red; added characters are highlighted in green.
+Select the *Updates* tab to view rule changes field by field, or the *JSON view* tab to view changes for the entire rule in JSON format. Both tabs display side-by-side comparisons of the *Current rule* (what you currently have installed) and the *Elastic update* version (what you can choose to install). Deleted characters are highlighted in red; added characters are highlighted in green.
 +
 To accept the changes and install the updated version, select *Update*.
 +