docs: BED-6727 Add v8.3.1 release notes summary (#102)

Author: StephenHinck

docs/resources/release-notes/summary.mdx

@@ -7,6 +7,7 @@ mode: wide
 |     |     |     |     |
 | --- | --- | --- | --- |
 | **Release** | **BloodHound** | **SharpHound** | **AzureHound** |
+| 2025-11-12 (v8.3.1) | **BloodHound (v8.3.1)** <br/><br/> Bug Fixes<br/><br/>* _[BHE Only]_ Fixed an issue where unexpected "Non-Certified Structure" findings would appear in Attack Paths.<br/>* _[BHE Only]_ The Finished Jobs Log page will no longer crash when opening details of specific jobs. | _No new release._ | _No new release._ |
 | [2025-10-30 (v8.3.0)](/resources/release-notes/v8-3-0) | **BloodHound (v8.3.0)**<br/><br/>New and Improved Features<br/><br/>* Added new `ProtectAdminGroups` edge for AdminSDHolder modeling _(requires SharpHound v2.8.0+)_.<br/>* Privilege Zones updates:<br/>  * _[BHE Only]_ Added support for **Certifications** tab to allow Administrators the ability to interrupt automatic expansions in Privilege Zones.<br/>* Added a new **History** tab to show changes to zones and labels.<br/>  * _[BHE Only]_ Added support for assigning custom glyphs to additional zones.<br/>  * Various UI improvements for readability and usability.<br/>  * Read-only users can now view selector sample results in the **Selector** details view.<br/>* Selector names are now unique - any existing selectors with naming collisions will have a unique numeral appended.<br/> * _[CE Only]_ Privilege Zones are now enabled by default on all new deployments.<br/>* Added a new **Finished Job Logs** and **File Ingest** details panel and filtering capability.<br/>* Updated the environment selector on the Data Quality page to support longer lists of active environments.<br/>* _[BHE Only]_ Added the ability to scale charts on the Posture view by logarithmic scale to help with readability if needed.<br/><br/>Bug Fixes<br/><br/>* _[BHE Only]_ Resolved an issue in specific environments that prevented data age-out reconciliation from running properly.<br/>* Resolved an issue with the [`attack-paths/details`](/reference/attack-paths/get-all-attack-path-findings) API endpoint that was causing occasional inconsistent data return.<br/>* `AZServicePrincipal` nodes now properly set `AZAddMembers` edges to `AZGroups` with an assigned `AZRole`.<br/>* Resolved an issue preventing the **View in Explore** button on a Privilege Zone selector Cypher statement from properly redirecting users to the **Explore** view and executing the query.<br/> * Updated pre-saved "Dangerous privileges for Domain users" to exclude `MemberOf` paths.<br/> * Updated pre-saved Azure queries to include the Privileged Role Administrator role by default.<br/> *Resolved an issue that prevented exporting multiple saved queries using the API.<br/> | **SharpHound (v2.8.0)** <br/><br/>New and Improved Features<br/><br/>* Added collection support for:<br/>  * `AdminSDHolderProtected` status for users, groups, and computers to support new BloodHound v8.3.0 modeling of the [`AdminSDHolder`](/resources/edges/protect-admin-groups) system in Active Directory<br/>  * [GPO Status](/resources/nodes/gpo#node-properties) to exclude disabled GPOs (or those which do not apply computer configurations) during local group processing<br/>  * Domain controller registry key for the `Netlogon` service security descriptor<br/>* _[CE Only]_ GPO Local Group processing will now exclude disabled GPOs or those which do not apply computer configurations.<br/>* CompStats output will now include the SID of tested computers for easier correlation.<br/>* Disabled adaptive timeouts for LDAP queries to improve reliability.<br/> | **AzureHound (v2.8.1)** <br/><br/>New and Improved Features<br/><br/>* Added support for Azure Managed Identity authentication.<br/><br/>Bug Fixes<br/><br/>* Resolved an issue preventing JWT authentication for AzureHound. |
 | [2025-09-23 (v8.2.0)](/resources/release-notes/v8-2-0) | **BloodHound (v8.2.0)**<br/><br/>New and Improved Features<br/><br/>* Introducing a brand-new UI to view, save, and share Cypher queries:<br/>  * Added search and filter support for saved Cypher queries.<br/>  * Saved Cypher queries may now be shared with other users in your environment.<br/>  * Added import and export support for Cypher queries.<br/>  * Added an option to disable or enable auto-run on selected, saved Cypher queries.<br/>* _[BHE Only]_ Privilege Zones updates:<br/>  * Detail view now supports searching for objects and selectors.<br/>  * Detail view now supports filtering by environment.<br/>  * Improved the clarity of Zones which have been disabled from analysis.<br/>  * Updated selector creation previews to more accurately present which objects are selected.<br/>  * Selectors are now default sorted alphabetically.<br/>  * Clarified the requirement that Zone and Label tag names may only contain certain characters.<br/>  * Added a notice that utilizing Labels as a Cypher filter criteria for a Zone may result in incomplete data.<br/>* Added "Quick Upload" and "Drag and drop upload" functionality to make uploading data to BloodHound faster.<br/>* `ManageCA` and `ManageCertificates` edges are now marked traversable, will appear in pathfinding filters, and impact risk in the Attack Paths views in BloodHound Enterprise.<br/>* Added new Entity Panel sections to provide more context:<br/>  * PKI hierarchy relationships on AIACA, RootCA, and EnterpriseCA objects.<br/>  * Template tracking for EnterpriseCA and CertTemplate objects.<br/>  * Trusted CA relationships for NTAuthStore objects.<br/>  * ADCS escalation paths for Domain objects.<br/>* Improved several pre-saved queries around ADCS, adding searches for ADCSESC5 and ADCSESC8, and clarifying the searches which return data for ADCSESC6, and ADCSESC7.<br/>* Clarified that the "Search" button on the Explore view searches only currently displayed results.<br/>* Updated layouts in Table view to make it more compact, showing more results in the same screen space.<br/>* _[BHE Only]_ Large numbers in the Posture view will now have appropriate comma-separation for improved readability.<br/>* Updated formatting for links in Entity Panels to make them more distinct.<br/>* BloodHound and BloodHound Enterprise will now utilize the same logo.<br/><br/>Bug Fixes<br/><br/>* Tier Zero zone description may now be modified as expected.<br/>* _[BHE Only]_ Azure tenant objects should once again display significant impact in the Attack Paths view.<br/>* _[BHE Only]_ Updated rounding logic between the Attack Paths and Posture pages to ensure exposure numbers appear consistently.<br/>* Users with the "Upload Only" role can once again upload data via File Ingest.<br/>* The `DCFor` edge will once again appear within Pathfinding in Explore, as expected.<br/>* The `CoerceAndRelayNTLMToSMB` "Coercion Targets" list now consistently populates.<br/>* The `serviceprincipalnames` property will appear as expected in Cypher autocomplete suggestions.<br/>* _[BHE Only]_ The "Tier Zero Role Activation Does Not Require MFA" Attack Path finding type will now properly summarize the risk of the findings within the path.<br/>* _[BHE Only]_ Remediation documentation will once again properly display bulleted and numbered list headings.<br/> | **SharpHound (v2.7.2)** <br/><br/>Bug Fixes<br/><br/> * Resolved an issue where SharpHound did not properly collect ACEs from AD Domain objects. | _No new release._ |
 | 2025-09-15 (v8.1.3) | **BloodHound (v8.1.3)** <br/><br/> Bug Fixes<br/><br/>* Reverted the new `MemberOf` linking between large default groups in Active Directory to address performance concerns in the graph. | _No new release._ | _No new release._ |