Address Acrolinx feedback for overview-page.md

Clarity improvements (Score: 50→Improved):
- Broke up complex sentences about cloud-native governance experience
- Simplified long sentence structure and improved readability
- Changed 'running on-premises' to 'that run on-premises' to avoid -ing words
- Restructured audit policy section into clear bullet points
- Split complex explanations into digestible parts

Consistency improvements (Score: 72→100):
- Maintained proper em dash formatting (already correct)
- Kept 'Azure portal' terminology (already lowercase)
- Ensured consistent formatting throughout

Terminology improvements (Score: 79→100):
- Replaced 'like' with 'such as' for better clarity
- Changed 'what's published' to 'what is published' for formal tone
- Defined VMs acronym: 'virtual machines (VMs)' on first use
- Changed 'More standards' to 'Additional standards' for better flow

Tense improvements:
- Changed 'is planned for' to 'will be added closer to' for clearer timeline

Document structure improvements:
- Enhanced readability while maintaining technical accuracy
- Improved flow between sections
- Better bullet point organization for complex processes

Author: Mutemwa Masheke

articles/governance/machine-configuration/how-to/assign-security-baselines/overview-page.md

@@ -11,16 +11,19 @@ Customizable security baselines built on Azure Policy and Machine Configuration
 
 This capability introduces *audit* baselines for both Windows and Linux, empowering customers to align security posture with internal compliance frameworks and regulatory standards. By passing custom baseline parameter input directly into Azure Policy, you can now represent organization-specific controls at scale.
 
-These baselines deliver a cloud-native governance experience for both Azure machines and non-Azure machines connected through [Azure Arc][01]. This includes machines running on-premises, in other public clouds, or at the edge. Together, Policy and Machine Configuration establish a unified control plane for compliance visibility. This approach enables you to assess, monitor, and enforce consistent security standards across your entire estate, regardless of location or platform. This approach reflects Microsoft's Secure by Design and Secure by Default principles, ensuring robust security and compliance everywhere your workloads run.
+These baselines deliver a cloud-native governance experience for both Azure machines and non-Azure machines connected through [Azure Arc][01]. This includes machines that run on-premises, in other public clouds, or at the edge. Together, Policy and Machine Configuration establish a unified control plane for compliance visibility. This approach enables you to assess, monitor, and enforce consistent security standards across your entire estate, regardless of location or platform. This approach reflects Microsoft's Secure by Design and Secure by Default principles. It helps ensure robust security and compliance everywhere your workloads run.
 
 ## Key Scenarios
 
-### Baseline Customization  
-Create tailored baselines using the *Modify Settings* wizard under **Policy \> Machine Configuration**. Administrators can enable, exclude, or adjust rules from industry benchmarks (like CIS Benchmarks or Microsoft baselines) to match internal standards. Each customization builds a downloadable JSON file that captures configuration intent—a reusable artifact compatible for policy-as-code workflows.
+### Baseline Customization
+Create tailored baselines using the *Modify Settings* wizard under **Policy \> Machine Configuration**. Administrators can enable, exclude, or adjust rules from industry benchmarks (such as CIS Benchmarks or Microsoft baselines) to match internal standards. Each customization builds a downloadable JSON file that captures configuration intent—a reusable artifact compatible for policy-as-code workflows.
 
 ### Assign Audit Policies
 
-Use Azure Policy to deploy your customized baseline parameters across Azure and Arc-connected machines. Azure Policy evaluates configuration states against selected benchmarks when an audit policy is assigned. It reports compliance in real time and surfaces findings across Azure Policy, Azure Resource Graph (ARG), and the Guest Assignments view.
+Azure Policy deploys your customized baseline parameters across Azure and Arc-connected machines. When you assign an audit policy, Azure Policy:
+- Evaluates configuration states against selected benchmarks
+- Reports compliance in real time
+- Surfaces findings across Azure Policy, Azure Resource Graph (ARG), and the Guest Assignments view
 
 ### Integration and Automation  
 Integrate baselines into CI/CD pipelines or configuration management workflows. Each baseline produces a declarative settings catalog (JSON) that can be version-controlled and deployed using CLI, ARM, or Bicep templates—ensuring reproducible compliance configurations across environments.
@@ -29,18 +32,18 @@ Integrate baselines into CI/CD pipelines or configuration management workflows.
 
 | **Standard** | **Description** |
 |----|----|
-| **Center for Internet Security (CIS) Linux Benchmarks** | Official CIS Benchmarks for all [Azure endorsed Linux distributions][02] in parity with what's published on the [CIS website][03]. |
+| **Center for Internet Security (CIS) Linux Benchmarks** | Official CIS Benchmarks for all [Azure endorsed Linux distributions][02] in parity with what is published on the [CIS website][03]. |
 | **Azure Compute Security Baseline for Windows** | Applies customized values for Windows Server 2022 and Windows Server 2025. |
 | **Azure Compute Security Baseline for Linux** | Enforces consistent security controls aligned with Azure Compute guidance. |
 
-More standards (for example, STIG), operating systems, and remediation capabilities are planned for future releases.
+Additional standards (for example, STIG), operating systems, and remediation capabilities are planned for future releases.
 
 ## Availability
 
 All public Azure regions are supported.
 
 > [!NOTE]
-> Support for Azure Government and Sovereign Clouds is planned for General Availability.
+> Support for Azure Government and Sovereign Clouds will be added closer to General Availability.
 
 ## Getting Started
 
@@ -60,7 +63,7 @@ The end-to-end experience for configuring Customizable Security Baselines follow
 
 ### Prerequisites
 
-- Azure Machine Configuration prerequisite policy initiative must be deployed. The capability enables Guest Configuration policies and installs the required extension on VMs.
+- Azure Machine Configuration prerequisite policy initiative must be deployed. The capability enables Guest Configuration policies and installs the required extension on virtual machines (VMs).
 
 - An Azure subscription or management group containing supported Windows and Linux VMs.
 

articles/governance/machine-configuration/how-to/assign-security-baselines/specify-custom-parameters-for-baseline-policy.md

@@ -14,7 +14,7 @@ With built-in security baselines, you can customize security controls to meet yo
 The new Azure Policy Settings Picker experience streamlines this process. It allows you to select which settings to evaluate and adjust configuration parameters for granular control. The experience supports advanced input formats for Linux and Windows and exports your customized baseline as a reusable JSON artifact. This flexibility ensures that policy enforcement is consistent, precise, and adaptable to complex enterprise needs, regardless of where your workloads run.
 
 > [!NOTE]
-> Ensure the *Machine Configuration prerequisites* initiative has been assigned to your subscription.
+> Ensure the *Machine Configuration prerequisites* initiative is assigned to your subscription.
 
 ## Open the Machine Configuration blade