[Security app] Detections events list 'overflow' ... button and expand > button do not have hover over names

[EricDavisX]

Kibana version: Tested on 7.9 BC 6 deployed to cloud prod

Browser version: Chrome latest on macOS

Describe the bug: the buttons in the SIEM / Security app Detections page do not have names in the ui or hover-over names so user may not know what they do (and may not try them). I found that the ... overflow button is the only way that the 'Exceptions' feature is exposed so it would be really nice to have it highlighted better in the UI with a name so users will know what the ... is.

Steps to reproduce:

1. install and deploy 7.9 latest or GA and deploy Agent / Endpoint
2. trigger a detection (alert) with mimikatz or other benign malware or use Leia!
3. note in the app that the events listing in hosts view has no hover over names.

Pedro and I discussed and we thought that 'More Actions' seemed like a good name for the ... overflow button. And perhaps 'Expand' could be a good title for the > button.

Expected behavior: users know where to find features because they are intuitively labeled. this will also hinder a11y if not fixed.

Screenshots (if relevant):

note that the 'analyze' and 'investigate' have hover overs, but the other 2 do not.

[EricDavisX]

@MikePaquette @crowens hi - I find this to be a fairly urgent need for the new Endpoint Exceptions work-flow, it will be hard for folks to find the option. Is it possible to get this in for 7.9.1? I'm hopefuly its an easier change, tho I don't know that.

[EricDavisX]

@mchopda I'll ping you as well.

[mchopda]

Agree with fixing hover for ... for better usability if it is a quick fix for 7.9.1 '>' is pretty standard, not too worried about it

[elasticmachine]

Pinging @elastic/kibana-security (Team:Security)

[elasticmachine]

Pinging @elastic/security-solution (Team: SecuritySolution)