[REQUEST]: Document Process for Adding Non-ECS Fields to Attack Discovery Field Selection

### Description

What: We need to document the workflow for adding non-ECS fields to Attack Discovery's field selection. The documentation should explain how users can select alerts containing desired non-ECS fields, access the field selector through the chat button, and confirm that these fields become available in the settings UI for future use.

### Resources

Link: https://elastic.slack.com/archives/C05BAPPP5KP/p1740063935545129?thread_ts=1739564182.445399&cid=C05BAPPP5KP

### Which documentation set does this change impact?

Elastic On-Prem and Cloud (all)

### Feature differences

Identical

### What release is this request related to?

N/A

### Collaboration model

The documentation team

### Point of contact.

**Main contact:** @jamesspi @dhru42 @andrew-goldstein 

**Stakeholders:**


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[REQUEST]: Document Process for Adding Non-ECS Fields to Attack Discovery Field Selection #534

Description

Resources

Which documentation set does this change impact?

Feature differences

What release is this request related to?

Collaboration model

Point of contact.

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[REQUEST]: Document Process for Adding Non-ECS Fields to Attack Discovery Field Selection #534

Description

Description

Resources

Which documentation set does this change impact?

Feature differences

What release is this request related to?

Collaboration model

Point of contact.

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions