ti_threatconnect: add query to dashboard to avoid duplicates (#12106)

Updated the base query to only use the latest index so indicators are not 
counted twice for all the panels in the dashboard. Updated one visualization
label to show its unique indicators being counted.

packages/ti_threatconnect/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.7.0"
+  changes:
+    - description: Add in filter for dashboard to only show latest indicators.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/12106
 - version: "1.6.0"
   changes:
     - description: Add "preserve_original_event" tag to documents with `event.kind` manually set to "pipeline_error".

packages/ti_threatconnect/kibana/dashboard/ti_threatconnect-2d465f90-973d-11ee-839e-ef65b7014120.json

@@ -61,7 +61,7 @@
                 ],
                 "query": {
                     "language": "kuery",
-                    "query": ""
+                    "query": "_index : logs-ti_threatconnect_latest.indicator"
                 }
             }
         },
@@ -136,7 +136,7 @@
                                                     "customLabel": true,
                                                     "dataType": "number",
                                                     "isBucketed": false,
-                                                    "label": "Total Indicators",
+                                                    "label": "Total Unique Indicators",
                                                     "operationType": "count",
                                                     "params": {
                                                         "emptyAsNull": false

packages/ti_threatconnect/manifest.yml

@@ -2,7 +2,7 @@
 format_version: 3.0.3
 name: ti_threatconnect
 title: ThreatConnect
-version: "1.6.0"
+version: "1.7.0"
 description: Collects Indicators from ThreatConnect using the Elastic Agent and saves them as logs inside Elastic
 type: integration
 categories: