8.15.0 Release notes (#5602)

* First draft * Fixed error * ok, actually fixing it * New features draft * Removes old content * breaking changes and more NF sums * Changes to all sections * light edits * Removes 186284 Verified don't need to include in RN * Update docs/release-notes/8.15.asciidoc Co-authored-by: natasha-moore-elastic <137783811+natasha-moore-elastic@users.noreply.github.com> * Update docs/release-notes/8.15.asciidoc Co-authored-by: Joe Peeples <joe.peeples@elastic.co> * Update docs/release-notes/8.15.asciidoc Co-authored-by: Joe Peeples <joe.peeples@elastic.co> * Update docs/release-notes/8.15.asciidoc Co-authored-by: Joe Peeples <joe.peeples@elastic.co> * Update docs/release-notes/8.15.asciidoc Co-authored-by: Joe Peeples <joe.peeples@elastic.co> * Update docs/release-notes/8.15.asciidoc * Fixed headers * Adds more GenAI and EA PRs * Incorporates Steph's and Pedro's reviews * Apply suggestions from code review * updates known issue * TH issues and fixes known issue formatting * Update docs/release-notes/8.15.asciidoc Co-authored-by: Janeen Mikell Roberts <57149392+jmikell821@users.noreply.github.com> * Update docs/release-notes/8.15.asciidoc Co-authored-by: Janeen Mikell Roberts <57149392+jmikell821@users.noreply.github.com> * Update docs/release-notes/8.15.asciidoc Co-authored-by: Janeen Mikell Roberts <57149392+jmikell821@users.noreply.github.com> * Update docs/release-notes/8.15.asciidoc Co-authored-by: Janeen Mikell Roberts <57149392+jmikell821@users.noreply.github.com> * Update docs/release-notes/8.15.asciidoc * Apply suggestions from code review Co-authored-by: Janeen Mikell Roberts <57149392+jmikell821@users.noreply.github.com> --------- Co-authored-by: Benjamin Ironside Goldstein <benjamin.ironside@elastic.co> Co-authored-by: natasha-moore-elastic <137783811+natasha-moore-elastic@users.noreply.github.com> Co-authored-by: Joe Peeples <joe.peeples@elastic.co> Co-authored-by: Benjamin Ironside Goldstein <91905639+benironside@users.noreply.github.com> Co-authored-by: Janeen Mikell Roberts <57149392+jmikell821@users.noreply.github.com>
elastic · Aug 7, 2024 · db80fb2 · db80fb2
1 parent a662e9e
commit db80fb2
Show file tree

Hide file tree

Showing 2 changed files with 97 additions and 0 deletions.
diff --git a/docs/release-notes.asciidoc b/docs/release-notes.asciidoc
@@ -3,6 +3,7 @@
 
 This section summarizes the changes in each release.
 
+* <<release-notes-8.15.0, {elastic-sec} version 8.15.0>>
 * <<release-notes-8.14.3, {elastic-sec} version 8.14.3>>
 * <<release-notes-8.14.2, {elastic-sec} version 8.14.2>>
 * <<release-notes-8.14.2, {elastic-sec} version 8.14.2>>
@@ -61,6 +62,7 @@ This section summarizes the changes in each release.
 * <<release-notes-8.0.0, {elastic-sec} version 8.0.0>>
 * <<release-notes-8.0.0-rc2, {elastic-sec} version 8.0.0-rc2>>
 
+include::release-notes/8.15.asciidoc[]
 include::release-notes/8.14.asciidoc[]
 include::release-notes/8.13.asciidoc[]
 include::release-notes/8.12.asciidoc[]

diff --git a/docs/release-notes/8.15.asciidoc b/docs/release-notes/8.15.asciidoc
@@ -0,0 +1,95 @@
+[[release-notes-header-8.15.0]]
+== 8.15
+
+[discrete]
+[[release-notes-8.15.0]]
+=== 8.15.0
+
+[discrete]
+[[known-issue-8.15.0]]
+==== Known issues
+
+// tag::known-issue-189676[]
+[discrete]
+.Tags appear in Elastic AI Assistant's responses
+[%collapsible]
+====
+*Details* +
+On August 1, 2024, it was discovered that Elastic AI Assistant's responses when using Bedrock Sonnet 3.5 may include `<antThinking>` tags, for example `<search_quality_reflection>` ({kibana-pull}189676[#189676]).
+
+
+====
+// end::known-issue-189676[]
+
+
+[discrete]
+[[breaking-changes-8.15.0]]
+==== Breaking changes
+
+* If you previously created any user-defined quick prompts for Elastic AI Assistant, they will no longer appear after you upgrade to 8.15. To resolve this, copy your existing quick prompts prior to upgrading, then add them again after upgrading. Additionally, in 8.15, quick prompts are shared by all users in your deployment, rather than saved at the user level ({kibana-pull}187040[#187040]).
+
+[discrete]
+[[features-8.15.0]]
+==== New features
+
+* Introduces Automatic Import, a feature that helps you to quickly parse, ingest, and create ECS mappings for data from sources that don't yet have prebuilt Elastic integrations ({kibana-pull}186304[#186304]).
+* Creates an LLM connector for Google Gemini ({kibana-pull}183668[#183668]).
+* Adds an API for Elastic AI Assistant ({kibana-pull}184485[#184485]).
+* Adds the `scan` action to the response console, which allows you to scan a specific file or directory on a host for malware ({kibana-pull}184723[#184723]).
+* Adds an {elastic-defend} integration policy option in Advanced Settings that allows you to opt out of registry event filtering ({kibana-pull}186564[#186564]).
+* Allows you to specify additional file and registry paths to monitor for read access ({kibana-pull}181361[#181361]).
+* Allows you to use {elastic-sec} to isolate and release hosts running a CrowdStrike agent ({kibana-pull}186801[#186801]).
+* Allows you to retrieve files from SentinelOne-enrolled hosts ({kibana-pull}181162[#181162]).
+* Allows you to create an event filter that excludes the descendant events of a specific process ({kibana-pull}184947[#184947]).
+* Recalculates entity risk scores when asset criticality changes on an individual entity ({kibana-pull}182234[#182234]).
+* Adds an **Asset criticality** column to user and host data tables. If asset criticality levels are assigned to your users and hosts, this information appears in the **Asset criticality** column ({kibana-pull}186375[#186375], {kibana-pull}186456[#186456]).
+* Adds an API that allows you to perform paginated KQL searches through asset criticality records ({kibana-pull}186568[#186568]).
+* Adds public APIs for managing asset criticality ({kibana-pull}186169[#186169]).
+* Allows you to edit the `max_signals`, `related_integrations`, and `required_fields` fields for custom rules ({kibana-pull}179680[#179680], {kibana-pull}178295[#178295], {kibana-pull}180682[#180682]).
+* Provides help from AI Assistant when you're correcting rule query errors ({kibana-pull}179091[#179091]).  
+* Allows you to bulk update custom highlighted fields for rules ({kibana-pull}179312[#179312]).
+* Adds alert suppression for {ml} and {esql} rules ({kibana-pull}181926[#181926], {kibana-pull}180927[#180927]).
+* Provides previews of hosts, users, and alerts that you're examining in the alert details flyout ({kibana-pull}186850[#186850], {kibana-pull}186857[#186857]).
+* Enhances Timeline’s data exploration experience by incorporating components from Discover, such as the sidebar and table, which allow you to quickly find fields of interest. Timeline’s overall performance is also improved ({kibana-pull}176064[#176064]).
+* Adds an option for toggling row renderers on and off, and moves notes to a new flyout in Timeline ({kibana-pull}186948[#186948]).
+* Revamps the Dashboards landing page ({kibana-pull}186465[#186465]).
+
+[discrete]
+[[enhancements-8.15.0]]
+==== Enhancements
+
+* Allows Attack discovery generation to continue when you navigate to another page, and allows you to run Attack discovery with multiple connectors simultaneously. ({kibana-pull}184949[#184949]).
+* Adds notifications to the connector dropdown menu on the Attack discovery page so you know when other connectors have new discoveries ({kibana-pull}186903[#186903], {kibana-pull}187209[#187209]).
+* Improves AI Assistant's responses across multiple connectors and in multiple scenarios for streaming and non-streaming use cases ({kibana-pull}182041[#182041], {kibana-pull}187183[#187183]).
+* Enables AI Assistant to remember information you ask it to remember ({kibana-pull}184554[#184554], https://github.com/elastic/security-docs/issues/5670[#5670]).
+* Updates the default Gemini version to `gemini-1.5-pro-001` and the default Bedrock version to `anthropic.claude-3-5-sonnet-20240620-v1:0` ({kibana-pull}186671[#186671]).
+* Simplifies how you enable AI Assistant's knowledge base ({kibana-pull}182763[#182763]).
+* Unifies the AI Assistant's settings view ({kibana-pull}184678[#184678]).
+* Introduces a new {elastic-endpoint} policy setting that allows you to control whether the kernel reports Windows network events that happened on a local loopback interface ({kibana-pull}181753[#181753]).
+* Improves how failure messages for the `scan` action appear in the response console ({kibana-pull}186284[#186284]).
+* Improves the risk engine's performance. Now, after you turn on the engine, risk data is available sooner ({kibana-pull}184797[#184797]).
+* Enhances the risk engine's normalization accuracy ({kibana-pull}184638[#184638]).
+* Updates the copy for bulk assigning asset criticality to multiple entities ({kibana-pull}181390[#181390]).
+* Improves visual and logic issues in the Findings table ({kibana-pull}184185[#184185]).
+* Enables the expandable alert details flyout by default and replaces the `securitySolution:enableExpandableFlyout` advanced setting with a feature flag that allows you to revert to the old flyout version ({kibana-pull}184169[#184169]).
+* Improves the UI design and copy of various places in the alert details flyout ({kibana-pull}187430[#187430], {kibana-pull}187920[#187920]). 
+* Updates the MITRE ATT&CK framework to version 15.1 ({kibana-pull}183463[#183463]).
+* Improves the warning message about rule actions being unavailable after a rule ran ({kibana-pull}182741[#182741]).
+* Enables the `xMatters` and `Server Log connectors` rule actions ({kibana-pull}172933[#172933]).
+
+[discrete]
+[[bug-fixes-8.15.0]]
+==== Bug fixes
+
+* Fixes a bug that prevented Timeline from properly retrieving results after upgrading to 8.14.1 ({kibana-pull}189031[#189031]).
+* Fixes a bug that showed that Timeline had been changed, even if it hadn't been ({kibana-pull}188106[#188106]).
+* Removes the option to investigate suppressed alerts in Timeline when you're previewing alert details from a rule preview ({kibana-pull}188385[#188385]).
+* Fixes the alignment of the page selector dropdown menu on the Shared Exception Lists page ({kibana-pull}187956[#187956]).
+* Fixes a rule execution error that occurred when {esql} rules queried source documents with non-ECS compliant sub-fields under the `event.action` field ({kibana-pull}187549[#187549]).
+* Fixes a bug that caused the `Enable entity risk scoring` option to display even when you didn't have the correct requirements ({kibana-pull}183517[#183517]).
+* Prevents `maxClauseCount` errors from occurring for indicator match rules ({kibana-pull}179748[#179748]).
+* Fixes a bug that prevented threat intelligence fields from correctly rendering in the alert details flyout if they had flattened fields ({kibana-pull}179395[#179395]).
+* Removes references in the UI that directed users to outdated documentation for the risk scoring feature ({kibana-pull}187585[#187585]).
+* Fixes a bug on the Get started page that prevented the correct username from being displayed in the greeting message ({kibana-pull}180670[#180670]).
+* Fixes a bug that caused the pagination menu from appearing in the correct place for the Uncommon processes table ({kibana-pull}189201[#189201]).
+* Fixes a bug that affected the panel showing the last command details in the Uncommon processes table ({kibana-pull}187848[#187848]).