docs(client-fms): Adds optimizeUnassociatedWebACL flag to ManagedServ…

…iceData, updates third-party firewall examples, and other minor documentation updates.

clients/client-fms/src/commands/PutPolicyCommand.ts

@@ -38,38 +38,51 @@ export interface PutPolicyCommandOutput extends PutPolicyResponse, __MetadataBea
 /**
  * @public
  * <p>Creates an Firewall Manager policy.</p>
+ * <p>A Firewall Manager policy is specific to the individual policy type. If you want to enforce multiple
+ * policy types across accounts, you can create multiple policies. You can create more than one
+ * policy for each type. </p>
+ * <p>If you add a new account to an organization that you created with Organizations, Firewall Manager
+ * automatically applies the policy to the resources in that account that are within scope of
+ * the policy. </p>
  * <p>Firewall Manager provides the following types of policies: </p>
  * <ul>
  * <li>
- * <p>An WAF policy (type WAFV2), which defines rule groups to run first in the
- * corresponding WAF web ACL and rule groups to run last in the web ACL.</p>
+ * <p>
+ * <b>Shield Advanced policy</b> - This policy applies Shield Advanced
+ * protection to specified accounts and resources. </p>
  * </li>
  * <li>
- * <p>An WAF Classic policy (type WAF), which defines a rule group. </p>
+ * <p>
+ * <b>Security Groups policy</b> - This type of policy gives you
+ * control over security groups that are in use throughout your organization in
+ * Organizations and lets you enforce a baseline set of rules across your organization. </p>
  * </li>
  * <li>
- * <p>A Shield Advanced policy, which applies Shield Advanced protection to specified
- * accounts and resources.</p>
+ * <p>
+ * <b>Network Firewall policy</b> - This policy applies
+ * Network Firewall protection to your organization's VPCs. </p>
  * </li>
  * <li>
- * <p>A security group policy, which manages VPC security groups across your Amazon Web Services
- * organization. </p>
+ * <p>
+ * <b>DNS Firewall policy</b> - This policy applies
+ * Amazon Route 53 Resolver DNS Firewall protections to your organization's VPCs. </p>
  * </li>
  * <li>
- * <p>An Network Firewall policy, which provides firewall rules to filter network traffic in specified
- * Amazon VPCs.</p>
- * </li>
- * <li>
- * <p>A DNS Firewall policy, which provides Route 53 Resolver DNS Firewall rules to filter DNS queries for
- * specified VPCs.</p>
+ * <p>
+ * <b>Third-party firewall policy</b> - This policy applies third-party firewall protections. Third-party firewalls are available by subscription through the Amazon Web Services Marketplace console at <a href="https://aws.amazon.com/marketplace">Amazon Web Services Marketplace</a>.</p>
+ * <ul>
+ * <li>
+ * <p>
+ * <b>Palo Alto Networks Cloud NGFW policy</b> - This policy applies Palo Alto Networks Cloud Next Generation Firewall (NGFW) protections and Palo Alto Networks Cloud NGFW rulestacks to your organization's VPCs.</p>
+ * </li>
+ * <li>
+ * <p>
+ * <b>Fortigate CNF policy</b> - This policy applies
+ * Fortigate Cloud Native Firewall (CNF) protections. Fortigate CNF is a cloud-centered solution that blocks Zero-Day threats and secures cloud infrastructures with industry-leading advanced threat prevention, smart web application firewalls (WAF), and API protection.</p>
+ * </li>
+ * </ul>
  * </li>
  * </ul>
- * <p>Each policy is specific to one of the types. If you want to enforce more than one
- * policy type across accounts, create multiple policies. You can create multiple
- * policies for each type.</p>
- * <p>You must be subscribed to Shield Advanced to create a Shield Advanced policy. For more
- * information about subscribing to Shield Advanced, see
- * <a href="https://docs.aws.amazon.com/waf/latest/DDOSAPIReference/API_CreateSubscription.html">CreateSubscription</a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript