[Serverless]: Security – About detection rules

docs/serverless/rules/about-rules.asciidoc

@@ -61,7 +61,7 @@ When you create a rule, you must either specify the {es} index pattens for which
 
 [NOTE]
 ====
-To access data views, ensure you have the {kibana-ref}/data-views.html#data-views-read-only-access[required permissions].
+To access data views, you need either the appropriate <<general-assign-user-roles,predefined Security user role>> or a <<custom-roles,custom role>> with the right privileges.
 ====
 
 [discrete]
@@ -74,7 +74,7 @@ For both prebuilt and custom rules, you can send notifications when alerts are c
 [[alerting-authorization-model]]
 == Authorization
 
-Rules, including all background detection and the actions they generate, are authorized using an {kibana-ref}/api-keys.html[API key] associated with the last user to edit the rule. Upon creating or modifying a rule, an API key is generated for that user, capturing a snapshot of their privileges. The API key is then used to run all background tasks associated with the rule including detection checks and executing actions.
+Rules, including all background detection and the actions they generate, are authorized using an <<api-keys,API key>> associated with the last user to edit the rule. Upon creating or modifying a rule, an API key is generated for that user, capturing a snapshot of their privileges. The API key is then used to run all background tasks associated with the rule including detection checks and executing actions.
 
 [IMPORTANT]
 ====