[8.15] [Docs] 8.15 Kibana What's new (elastic#188767) (elastic#189711)

# Backport This will backport the following commits from `main` to `8.15`: - [[Docs] 8.15 Kibana What's new (elastic#188767)](elastic#188767)  ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport)
lcawl · Aug 1, 2024 · d8b7553 · d8b7553
1 parent be8b959
commit d8b7553
Show file tree

Hide file tree

Showing 14 changed files with 182 additions and 4 deletions.
diff --git a/docs/user/images/array-in-metrics.png b/docs/user/images/array-in-metrics.png
diff --git a/docs/user/images/create-simple-api-key.png b/docs/user/images/create-simple-api-key.png
diff --git a/docs/user/images/dashboard-creator-filter.png b/docs/user/images/dashboard-creator-filter.png
diff --git a/docs/user/images/dashboard-creator.png b/docs/user/images/dashboard-creator.png
diff --git a/docs/user/images/dashboard-last-editor.png b/docs/user/images/dashboard-last-editor.png
diff --git a/docs/user/images/esql-field-statistics.png b/docs/user/images/esql-field-statistics.png
diff --git a/docs/user/images/field-statistics-esql.png b/docs/user/images/field-statistics-esql.png
diff --git a/docs/user/images/field-statistics-panel-in-dashboards.png b/docs/user/images/field-statistics-panel-in-dashboards.png
diff --git a/docs/user/images/integrations-in-esql.png b/docs/user/images/integrations-in-esql.png
diff --git a/docs/user/images/obs-log-rate-analysis-insigths.png b/docs/user/images/obs-log-rate-analysis-insigths.png
diff --git a/docs/user/images/share-modal.png b/docs/user/images/share-modal.png
diff --git a/docs/user/images/statistics-in-legends.png b/docs/user/images/statistics-in-legends.png
diff --git a/docs/user/images/statistics-in-legends2.png b/docs/user/images/statistics-in-legends2.png
diff --git a/docs/user/whats-new.asciidoc b/docs/user/whats-new.asciidoc
@@ -7,14 +7,192 @@ check the <<release-notes, release notes>>.
 
 Previous versions: {kibana-ref-all}/8.14/whats-new.html[8.14] | {kibana-ref-all}/8.13/whats-new.html[8.13] | {kibana-ref-all}/8.12/whats-new.html[8.12] | {kibana-ref-all}/8.11/whats-new.html[8.11] | {kibana-ref-all}/8.10/whats-new.html[8.10] | {kibana-ref-all}/8.9/whats-new.html[8.9] | {kibana-ref-all}/8.8/whats-new.html[8.8] | {kibana-ref-all}/8.7/whats-new.html[8.7] | {kibana-ref-all}/8.6/whats-new.html[8.6] | {kibana-ref-all}/8.5/whats-new.html[8.5] | {kibana-ref-all}/8.4/whats-new.html[8.4] | {kibana-ref-all}/8.3/whats-new.html[8.3] | {kibana-ref-all}/8.2/whats-new.html[8.2] | {kibana-ref-all}/8.1/whats-new.html[8.1] | {kibana-ref-all}/8.0/whats-new.html[8.0]
 
+
+[discrete]
+=== Analyst Experience
+
+[discrete]
+==== View dashboard creator and last editor
+
+You can now see who created and who last updated a dashboard. 
+
+You can find the creator information right from the dashboard list. 
+
+image::images/dashboard-creator.png[Dashboard creator column in dashboard list]
+
+Quickly find all dashboards created by the same user with a simple filter. 
+
+image::images/dashboard-creator-filter.png[Filtering dashboards by creator]
+
+Note that the creator information will be visible only for dashboards created on or after version 8.14. 
+
+You can also see who last updated a dashboard by clicking the dashboard information icon from the dashboard list. The creator is also visible next to it. This information is immutable and cannot be changed.
+
+image::images/dashboard-last-editor.png[Dashboard details panel with the name of the last editor]
+
 [discrete]
-=== Cases
+==== Field statistics in Dashboards
 
-{kib} cases offer a new powerful capability to enhance the efficiency of your analyst teams with _templates_. 
+It's now easier than ever to include your field statistics view from **Discover** into **Dashboards**. While running investigations, it is very common that you need to see some field information, such as unique values and their distribution, to make sense of the data. Select the fields that you want with your ES|QL query and get the document count, values, and distribution in your dashboard so you don't have to navigate back and forth to **Discover** to see this information.
+
+image::https://images.contentstack.io/v3/assets/bltefdd0b53724fa2ce/blt9bc52ff7851acc52/669a4f6a490fbc64fa22f279/field-statistics.gif[Showing field statistics panel in Dashboards]
+
+[discrete]
+==== Statistics in legends
+
+Accelerate time to insights by summarizing the values of your charts using average, minimum, maximum, median, and variance, among many others. You can add these statistics for **Lens** and ES|QL visualizations. It is important to note that these statistics are computed using the data points from the chart considering the aggregation used and not the raw data. In the following example, the chart shows the median memory per host, so the Max = 15.3KB for the first series (artifacts.elastic.co) is the maximum value of the median memory per host. 
+
+image::images/statistics-in-legends.png[Statistics in legends]
+
+You can find the option to select statistics for your legends along with an explanation for each calculation when editing your visualization, as shown in the following image.
+
+image::images/statistics-in-legends2.png[Select statistics in legends]
+
+[discrete]
+==== Array of values for Metrics
+
+The new **Metrics** now supports fields that show an array of values.
+
+image::images/array-in-metrics.png[A metric showing an array of values, width=35%]
+
+[discrete]
+==== Push flyout for Discover document viewer
+
+You can now seamlessly view document details and the main table simultaneously in **Discover** with the new _push_ flyout. You can adjust the width of the flyout to suit your needs and explore your data much more easily.
+
+image::https://images.contentstack.io/v3/assets/bltefdd0b53724fa2ce/bltb40a408acf4ab688/669a58ea9fecd85219d58ed2/discover-push-flyout.gif[Resizable push flyout in Discover]
+
+[discrete]
+==== Integrations support in the ES|QL editor when using FROM command.
+
+We're excited to announce enhanced support for integrations in the ES|QL editor with the *FROM* command. Previously, you could only access indices, but now you can also view a list of installed integrations directly within the editor. This improvement streamlines your workflow, making it easier to manage and utilize various integrations while working with your data.
+
+image::images/integrations-in-esql.png[Accessing an integration from ES|QL]
+
+[discrete]
+==== Field statistics in ES|QL
+
+Field statistics are now available in ES|QL. This feature is designed to provide comprehensive insights for each data field. With this enhancement, you can access detailed statistics such as distributions, averages, and other key metrics, helping you quickly understand your data. This makes data exploration and quality assessment more efficient, providing deeper insights and streamlining the analysis of field-level data in ES|QL.
+
+image::images/field-statistics-esql.png[Field statistics in ES|QL]
+
+[discrete]
+==== Filter UX improvements in ES|QL
+
+We're thrilled to unveil a complete overhaul of filtering in the ES|QL UX. Now, you can seamlessly filter data by browsing a time series chart, allowing for quick and intuitive time-based filtering. Interactive chart filtering lets you refine your data directly by clicking on any chart, while creating WHERE clause filters from the Discover table or sidebar has never been easier. These enhancements streamline data exploration and analysis, making your ES|QL experience more efficient and user-friendly than ever.
+
+*Filter by clicking a chart:*
+
+image::https://images.contentstack.io/v3/assets/bltefdd0b53724fa2ce/blt965a5190f246f7c8/669a7d41e5f7c84793b031cb/filter-by-clicking-chart.gif[Filter by clicking a chart]
+
+*Filter by browsing a time series chart:*
+
+image::https://images.contentstack.io/v3/assets/bltefdd0b53724fa2ce/blta20c9a93dded707c/669a7d40843f93a02fe51013/filter-by-brushing-time-series.gif[Filter by browsing a time series chart]
+
+*Create WHERE clause filters from Discover table or sidebar:*
+
+image::https://images.contentstack.io/v3/assets/bltefdd0b53724fa2ce/blt50ac35ab3af29ff8/669a7d4006a6fafe4c7cb39d/create-where-clause-filters-from-sidebar.gif[Create WHERE clause filters from Discover table or sidebar]
+
+[discrete]
+=== Alerting, cases, and connectors
+
+[discrete]
+==== Case templates
+
+{kib} cases offer a new powerful capability to enhance the efficiency of your analyst teams with <<case-templates,templates>>. 
 You can manage multiple templates, each of which can be used to auto-populate values in a case with pre-defined knowledge.
 This streamlines the investigative process and significantly reduces time to resolution.
 
-In 8.11, custom fields were added to cases and they are now moving from technical preview to general availability.
+[discrete]
+==== Case custom fields are GA
+
+In 8.11, <<case-custom-fields,custom fields>> were added to cases and they are now moving from technical preview to general availability.
 You can set custom field values in your templates to enhance consistency across cases.
 
-Learn more about custom fields and templates in <<manage-cases-settings>>.
+[discrete]
+==== {sn} additional fields
+
+You can now create enriched {sn} tickets based on detected alerts with a more comprehensive structure that matches the {sn} ticket scheme.
+A new JSON field is now available as part of the {sn} action, which enables you to send any field from {kib} alerts to {sn} tickets. 
+
+[discrete]
+==== {webhook-cm} SSL auth support
+
+It's common for organizations to integrate with third parties using secured authentication.
+Currently, most of the available case connectors use basic authentication (user and passwords or tokens), which might not be sufficient to meet organization security policies.
+With this release, the <<cases-webhook-action-type,{webhook-cm} connector>> now supports client certification, which enables you to leverage the connector for secured integration with third parties.
+
+The {webhook-cm} connector also moves from technical preview to general availability in this release.
+
+[discrete]
+=== Machine Learning
+
+[discrete]
+==== Improved UX for Log Pattern Analysis in Discover 
+
+Analyze large volumes of logs efficiently, in very short times with Log Pattern Analysis in **Discover**. In 8.15, we redesigned the Log Pattern Analysis user flow in **Discover** to make it easier to use. Discover log patterns with one click for the message field (and other applicable text fields) and easily filter in and out logs to drastically reduce MTTR.
+
+image::https://images.contentstack.io/v3/assets/bltefdd0b53724fa2ce/blt7e63d7e764ab183e/669a807bd316c7015db35458/ml-log-pattern-analysis.gif[New log pattern analysis interface]
+
+[discrete]
+==== ES|QL support for field statistics in Discover
+
+The Field statistics functionality now supports ES|QL, Elastic's primary query language.
+
+image::images/esql-field-statistics.png[Field statistics in ES|QL]
+
+[discrete]
+==== Field statistics embeddable panel in Dashboards
+
+You can now add field statistics panels with ES|QL support straight within your dashboards, eliminating the need to transition between **Discover** and **Dashboards**.
+
+image::images/field-statistics-panel-in-dashboards.png[Field statistics embeddable panel in Dashboards]
+
+[discrete]
+==== Log Rate Analysis contextual insights in serverless Observability
+
+You can now see insights in natural language, for example for the root cause of a log rate change or threshold alert, in Log Rate Analysis. This feature is currently only available for Observability serverless projects.
+
+image::images/obs-log-rate-analysis-insigths.png[Log Rate Analysis contextual insights in serverless Observability]
+
+[discrete]
+==== Anthropic integration with the Inference API
+
+The inference API provides a seamless, intuitive interface to perform inference and other tasks against proprietary, hosted, and integrated external services. In 8.15, we're extending it to support Anthropic's chat completion API.
+
+[discrete]
+==== Support for reranking with the Inference API
+
+In 8.15, we're also extending the inference API with the ability to host cross encoder models in Elastic and perform the reranking task.
+
+[discrete]
+=== Global Experience
+
+[discrete]
+==== Simplified Sharing
+
+You can now share a dashboard, search, or lens object in one click. When sharing an object, the most common actions are directly presented to you, and a short link is automatically generated, making it simpler than ever to share your work.
+
+image::images/share-modal.png[New object share modal, width=50%]
+
+[discrete]
+==== “My dashboards” filter
+
+The days of manually scrolling through an endless list of dashboards are behind you. You can now filter by creator to go directly to the dashboards created by a specific teammate.
+
+NOTE: Only dashboards created on or after 8.14 will have a creator.
+
+[discrete]
+==== Quick API keys
+
+Many API keys don’t require custom settings, so we made it simple to generate a standard key. From the **Endpoints & API keys** top menu in Search, you can create a key in seconds. 
+
+image::images/create-simple-api-key.png[Shortcut to create an API key, width=60%]
+
+[discrete]
+=== Platform Security
+
+[discrete]
+==== Filtering by User in Kibana Audit Logs
+
+We are pleased to share that ignoring events by user in Kibana audit logs is now possible. This enhancement will give you more flexibility to reduce the overall number of events logged by the Kibana audit logs service and to control the volume of data being generated in audit logs. While we currently offer a number of ways to do this using the `xpack.security.audit.ignore_filters.[]` configuration setting, there wasn't an easy option to filter by user. With this addition, you can configure Kibana audit logs to ignore events based on values from the following fields: users, spaces, outcomes, categories, types and actions.