Optimizing Incident Triaging via Kibana Case Integration

I have created security rules in Kibana and integrated the Cases action to enable auto-generated cases. Initially, I faced a limitation where I couldn't customize the case payload to extract critical alert details. This made it difficult to immediately identify what was wrong with a specific host or determine the correct team assignment.