Merged PR 4856: Merge whfb-staging to master

Navigation error in WHFB
And removed a sentence about HPKP

windows/access-protection/enterprise-certificate-pinning.md

@@ -22,7 +22,7 @@ Enterprise certificate pinning is a Windows feature for remembering, or “pinni
 Enterprise certificate pinning helps reduce man-in-the-middle attacks by enabling you to protect your internal domain names from chaining to unwanted certificates or to fraudulently issued certificates.
 
 >[!NOTE] 
-> External domain names, where the certificate issued to these domains is issued by a public certificate authority, are not ideal for enterprise certificate pinning. Web administrators should configure their web servers to use HTTP public key pinning (HPKP) and encourage users to use web browsers that support HPKP.
+> External domain names, where the certificate issued to these domains is issued by a public certificate authority, are not ideal for enterprise certificate pinning.
 
 Windows Certificate APIs (CertVerifyCertificateChainPolicy and WinVerifyTrust) are updated to check if the site’s server authentication certificate chain matches a restricted set of certificates. 
 These restrictions are encapsulated in a Pin Rules Certificate Trust List (CTL) that is configured and deployed to Windows 10 computers. 

windows/access-protection/hello-for-business/hello-hybrid-key-new-install.md

@@ -135,7 +135,7 @@ Alternatively, you can configure Windows Server 2016 Active Directory Federation
 > * Consider using Azure Multifactor Authentication or a third-party multifactor authentication provider with Windows Server Active Directory Federation Services, if necessary.
 
 > [!div class="nextstepaction"]
-> [Configure Azure Device Registration](hello-hybrid-cert-trust-devreg.md)
+> [Configure Azure Device Registration](hello-hybrid-key-trust-devreg.md)
 
 <br><br>