diff --git a/docs/reference/services/app-orchestration/amazon-ecs-cluster.md b/docs/reference/services/app-orchestration/amazon-ecs-cluster.md
index 0d981a38c..0db0e4e18 100644
--- a/docs/reference/services/app-orchestration/amazon-ecs-cluster.md
+++ b/docs/reference/services/app-orchestration/amazon-ecs-cluster.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon ECS Cluster
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ecs-cluster" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ecs-cluster" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fecs-cluster" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -836,5 +836,5 @@ The CloudWatch Dashboard metric widget for the ECS cluster workers' Memory utili
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"a815cd878c403173ad13acb9c63c1e67"}
+{"sourcePlugin":"service-catalog-api","hash":"78d7b40f248256164ef928cba33cd3a4"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/amazon-ecs-fargate-cluster.md b/docs/reference/services/app-orchestration/amazon-ecs-fargate-cluster.md
index da6ab85ac..ec41da55a 100644
--- a/docs/reference/services/app-orchestration/amazon-ecs-fargate-cluster.md
+++ b/docs/reference/services/app-orchestration/amazon-ecs-fargate-cluster.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.66.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.66.0"/>
 
 # Amazon ECS Fargate Cluster
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ecs-fargate-cluster" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ecs-fargate-cluster" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fecs-fargate-cluster" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -159,5 +159,5 @@ The name of the ECS cluster.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"9e62fb0f1f86b9023d6916a9ce211f84"}
+{"sourcePlugin":"service-catalog-api","hash":"901668771669b87221faec37cea88dea"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/amazon-ecs-service.md b/docs/reference/services/app-orchestration/amazon-ecs-service.md
index 3d450b534..1a118bd22 100644
--- a/docs/reference/services/app-orchestration/amazon-ecs-service.md
+++ b/docs/reference/services/app-orchestration/amazon-ecs-service.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon ECS Service
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ecs-service" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ecs-service" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fecs-service" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -1318,5 +1318,5 @@ The names of the ECS service's load balancer's target groups
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"36da9325a5bfd779d7672900d4710a51"}
+{"sourcePlugin":"service-catalog-api","hash":"a2d359f3c099ae386aeb5f1ac2eee542"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/amazon-eks-core-services.md b/docs/reference/services/app-orchestration/amazon-eks-core-services.md
index d483db705..3077040e2 100644
--- a/docs/reference/services/app-orchestration/amazon-eks-core-services.md
+++ b/docs/reference/services/app-orchestration/amazon-eks-core-services.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.84.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.84.0"/>
 
 # Amazon EKS Core Services
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/eks-core-services" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/eks-core-services" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Feks-core-services" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -897,5 +897,5 @@ Name of the CloudWatch Log Group used to store the container logs.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"e462345e2656af39b09cf7f8d15449d2"}
+{"sourcePlugin":"service-catalog-api","hash":"bb540d28afefb55027edc87bbf0a1986"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/amazon-eks-workers.md b/docs/reference/services/app-orchestration/amazon-eks-workers.md
index 858770c35..86c7ad979 100644
--- a/docs/reference/services/app-orchestration/amazon-eks-workers.md
+++ b/docs/reference/services/app-orchestration/amazon-eks-workers.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon EKS Workers
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/eks-workers" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/eks-workers" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Feks-workers" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -1154,5 +1154,5 @@ The list of names of the ASGs that were deployed to act as EKS workers.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"72b20e5751be8aeed0c0aebc815c0497"}
+{"sourcePlugin":"service-catalog-api","hash":"753dd3928d0cc35804b78a0053ffcb1b"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/amazon-eks.md b/docs/reference/services/app-orchestration/amazon-eks.md
index 773f07d8c..4a1bd6420 100644
--- a/docs/reference/services/app-orchestration/amazon-eks.md
+++ b/docs/reference/services/app-orchestration/amazon-eks.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon EKS
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/eks-cluster" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/eks-cluster" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Feks-cluster" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -1585,5 +1585,5 @@ The ID of the AWS Security Group associated with the self-managed EKS workers.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"91dc3965d8d3289738189c21c478508e"}
+{"sourcePlugin":"service-catalog-api","hash":"d5adf775136815202f1c2f7945d59ba7"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/auto-scaling-group-asg.md b/docs/reference/services/app-orchestration/auto-scaling-group-asg.md
index 9042d201a..4ae2e631c 100644
--- a/docs/reference/services/app-orchestration/auto-scaling-group-asg.md
+++ b/docs/reference/services/app-orchestration/auto-scaling-group-asg.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Auto Scaling Group
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/asg-service" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/asg-service" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fasg-service" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -892,5 +892,5 @@ The ID of the Security Group that belongs to the ASG.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"6e0fe67e4011f23a7194fdcf2847ea68"}
+{"sourcePlugin":"service-catalog-api","hash":"ed918f42fef483fbbee6b6ebabd5942c"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/ec-2-instance.md b/docs/reference/services/app-orchestration/ec-2-instance.md
index 12cf36806..fb6cbfc4d 100644
--- a/docs/reference/services/app-orchestration/ec-2-instance.md
+++ b/docs/reference/services/app-orchestration/ec-2-instance.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.84.4"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.84.4"/>
 
 # EC2 Instance
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ec2-instance" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/ec2-instance" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fec2-instance" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -681,5 +681,5 @@ The input parameters for the EBS volumes.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"82cb1593fa3f63a7da97b27b3bc4eeca"}
+{"sourcePlugin":"service-catalog-api","hash":"e213b1d2b53d679f78d15b17c0247e97"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/kubernetes-namespace.md b/docs/reference/services/app-orchestration/kubernetes-namespace.md
index bac432733..64213a7d8 100644
--- a/docs/reference/services/app-orchestration/kubernetes-namespace.md
+++ b/docs/reference/services/app-orchestration/kubernetes-namespace.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.83.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.83.0"/>
 
 # Kubernetes Namespace
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/k8s-namespace" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/k8s-namespace" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fk8s-namespace" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -263,5 +263,5 @@ The name of the rbac role that grants read only permissions on the namespace.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"59292fa9e2371a98e1ce702c193d839a"}
+{"sourcePlugin":"service-catalog-api","hash":"41f809a48c8b79255cb879730763f7b4"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/kubernetes-service.md b/docs/reference/services/app-orchestration/kubernetes-service.md
index 9b23045a8..97891d4b5 100644
--- a/docs/reference/services/app-orchestration/kubernetes-service.md
+++ b/docs/reference/services/app-orchestration/kubernetes-service.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Kubernetes Service
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/k8s-service" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/k8s-service" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fk8s-service" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -925,5 +925,5 @@ Number of seconds to wait for Pods to become healthy before marking the deployme
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"6d7e1ee238bf4d10a59ff0a46d345aea"}
+{"sourcePlugin":"service-catalog-api","hash":"7cf1f72106874d7645d701df03de2f3a"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/lambda.md b/docs/reference/services/app-orchestration/lambda.md
index bc5332c11..1d503d89e 100644
--- a/docs/reference/services/app-orchestration/lambda.md
+++ b/docs/reference/services/app-orchestration/lambda.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.1"/>
 
 # Lambda
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/lambda" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/lambda" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Flambda" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -361,6 +361,26 @@ The function entrypoint in your code. This is typically the name of a function o
 <HclListItemDefaultValue defaultValue="null"/>
 </HclListItem>
 
+<HclListItem name="iam_policy" requirement="optional" type="map">
+<HclListItemDescription>
+
+An object defining the policy to attach to `iam_role_name` if the IAM role is going to be created. Accepts a map of objects, where the map keys are sids for IAM policy statements, and the object fields are the resources, actions, and the effect ('Allow' or 'Deny') of the statement. Ignored if `iam_role_arn` is provided. Leave as null if you do not wish to use IAM role with Service Accounts.
+
+</HclListItemDescription>
+<HclListItemTypeDetails>
+
+```hcl
+map(object({
+    resources = list(string)
+    actions   = list(string)
+    effect    = string
+  }))
+```
+
+</HclListItemTypeDetails>
+<HclListItemDefaultValue defaultValue="null"/>
+</HclListItem>
+
 <HclListItem name="image_uri" requirement="optional" type="string">
 <HclListItemDescription>
 
@@ -762,5 +782,5 @@ Latest published version of your Lambda Function
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"c3091f9fb46ecb27b84c21fcaf82ca0f"}
+{"sourcePlugin":"service-catalog-api","hash":"40d26f388b45e61002d060c10a39d218"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/app-orchestration/public-static-website.md b/docs/reference/services/app-orchestration/public-static-website.md
index d90e86420..fa7c9a250 100644
--- a/docs/reference/services/app-orchestration/public-static-website.md
+++ b/docs/reference/services/app-orchestration/public-static-website.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.83.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.83.0"/>
 
 # Public Static Website
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/public-static-website" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/services/public-static-website" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=services%2Fpublic-static-website" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -332,5 +332,5 @@ The ARN of the created S3 bucket associated with the website.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"6bd75027a663f966af6140b2289c4408"}
+{"sourcePlugin":"service-catalog-api","hash":"a635ae7b0fc5b40276b30f0dc3772c23"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/ci-cd-pipeline/ecs-deploy-runner.md b/docs/reference/services/ci-cd-pipeline/ecs-deploy-runner.md
index fb985c3b6..8d1560d69 100644
--- a/docs/reference/services/ci-cd-pipeline/ecs-deploy-runner.md
+++ b/docs/reference/services/ci-cd-pipeline/ecs-deploy-runner.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # ECS Deploy Runner
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/ecs-deploy-runner" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/ecs-deploy-runner" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=mgmt%2Fecs-deploy-runner" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -1107,5 +1107,5 @@ Security Group ID of the ECS task
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"8865e555bfc21258727130ef0564a7a0"}
+{"sourcePlugin":"service-catalog-api","hash":"3038344db7fcee0a09110df54f042e23"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/ci-cd-pipeline/jenkins.md b/docs/reference/services/ci-cd-pipeline/jenkins.md
index 293a44fe0..25d4b847d 100644
--- a/docs/reference/services/ci-cd-pipeline/jenkins.md
+++ b/docs/reference/services/ci-cd-pipeline/jenkins.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Jenkins CI Server
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/jenkins" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/jenkins" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=mgmt%2Fjenkins" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -848,5 +848,5 @@ The ID of the Security Group attached to the Jenkins EC2 Instance
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"aa5db15404ec1af2a6d8f33bc43a2f56"}
+{"sourcePlugin":"service-catalog-api","hash":"e41872c31946588df431c65c6a167877"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/data-storage/amazon-aurora.md b/docs/reference/services/data-storage/amazon-aurora.md
index 39c268697..f1be5c9b0 100644
--- a/docs/reference/services/data-storage/amazon-aurora.md
+++ b/docs/reference/services/data-storage/amazon-aurora.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon Aurora
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/aurora" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/aurora" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=data-stores%2Faurora" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -1059,5 +1059,5 @@ The ARN of the AWS Lambda Function used for sharing manual snapshots with second
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"161908d41c4aa19eaf96827706de0fb4"}
+{"sourcePlugin":"service-catalog-api","hash":"28cfbb9874766f4f0cfa4e8a916ce4d3"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/data-storage/amazon-ecr-repositories.md b/docs/reference/services/data-storage/amazon-ecr-repositories.md
index 8d68dd79e..eb3bc2fd9 100644
--- a/docs/reference/services/data-storage/amazon-ecr-repositories.md
+++ b/docs/reference/services/data-storage/amazon-ecr-repositories.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.68.3"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.1"/>
 
 # Amazon ECR Repositories
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/ecr-repos" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/ecr-repos" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=data-stores%2Fecr-repos" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -130,6 +130,22 @@ object({
 </HclListItemDefaultValue>
 </HclListItem>
 
+<HclListItem name="default_external_account_ids_with_lambda_access" requirement="optional" type="list">
+<HclListItemDescription>
+
+The default list of AWS account IDs for external AWS accounts that should be able to create Lambda functions based on container images in these ECR repos. Can be overridden on a per repo basis by the external_account_ids_with_lambda_access property in the repositories map.
+
+</HclListItemDescription>
+<HclListItemTypeDetails>
+
+```hcl
+list(string)
+```
+
+</HclListItemTypeDetails>
+<HclListItemDefaultValue defaultValue="[]"/>
+</HclListItem>
+
 <HclListItem name="default_external_account_ids_with_read_access" requirement="optional" type="list">
 <HclListItemDescription>
 
@@ -252,5 +268,5 @@ A list of IAM policy actions necessary for ECR write access.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"dea900e55d8be9e6806e7f35ce2ccdc7"}
+{"sourcePlugin":"service-catalog-api","hash":"25004f451b9489a0fd7ed75903f59008"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/data-storage/amazon-elasti-cache-for-memcached.md b/docs/reference/services/data-storage/amazon-elasti-cache-for-memcached.md
index 067e6589b..c3372f726 100644
--- a/docs/reference/services/data-storage/amazon-elasti-cache-for-memcached.md
+++ b/docs/reference/services/data-storage/amazon-elasti-cache-for-memcached.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon ElastiCache for Memcached
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/memcached" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/memcached" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=data-stores%2Fmemcached" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -283,5 +283,5 @@ The configuration endpoint to allow host discovery.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"95f37c3eb2dd14f3ea383551ad5ce7b7"}
+{"sourcePlugin":"service-catalog-api","hash":"83d618e00bbd9e376c1fcbdb645e1948"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/data-storage/amazon-elasti-cache-for-redis.md b/docs/reference/services/data-storage/amazon-elasti-cache-for-redis.md
index 8026e219e..9033fa433 100644
--- a/docs/reference/services/data-storage/amazon-elasti-cache-for-redis.md
+++ b/docs/reference/services/data-storage/amazon-elasti-cache-for-redis.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon ElastiCache for Redis
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/redis" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/redis" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=data-stores%2Fredis" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -418,5 +418,5 @@ When cluster mode is disabled, use this endpoint for all read operations.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"ddfa297a5f9a53507d651f9258f929b4"}
+{"sourcePlugin":"service-catalog-api","hash":"9c5bddb5a6b7bdb45b0e41f83e18be4b"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/data-storage/amazon-elasticsearch.md b/docs/reference/services/data-storage/amazon-elasticsearch.md
index 83ddc26f8..575627a2e 100644
--- a/docs/reference/services/data-storage/amazon-elasticsearch.md
+++ b/docs/reference/services/data-storage/amazon-elasticsearch.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon Elasticsearch Service
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/elasticsearch" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/elasticsearch" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=data-stores%2Felasticsearch" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -521,5 +521,5 @@ Domain-specific endpoint for Kibana without https scheme.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"5f7b80df5e6af6a75de318e85eb43500"}
+{"sourcePlugin":"service-catalog-api","hash":"eddfa49e1bc0a0226928335a901860df"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/data-storage/amazon-rds.md b/docs/reference/services/data-storage/amazon-rds.md
index b8b91e20c..fa303500f 100644
--- a/docs/reference/services/data-storage/amazon-rds.md
+++ b/docs/reference/services/data-storage/amazon-rds.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.1"/>
 
 # Amazon Relational Database Service
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/rds" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/rds" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=data-stores%2Frds" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -1097,5 +1097,5 @@ The ID of the Security Group that controls access to the RDS DB instance.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"3870b3a6e627ef54245e01bc569fe331"}
+{"sourcePlugin":"service-catalog-api","hash":"2038d957f7a09096ee7aaea34a2a55dd"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/data-storage/s-3-bucket.md b/docs/reference/services/data-storage/s-3-bucket.md
index 96ece8c54..07651bea1 100644
--- a/docs/reference/services/data-storage/s-3-bucket.md
+++ b/docs/reference/services/data-storage/s-3-bucket.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.78.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.78.0"/>
 
 # S3 Bucket
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/s3-bucket" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/data-stores/s3-bucket" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=data-stores%2Fs3-bucket" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -415,5 +415,5 @@ The name of the replica S3 bucket.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"1f1d485f80ce2fbc02dcd2406251ac51"}
+{"sourcePlugin":"service-catalog-api","hash":"0cafe7f4796c065300056651124f8e03"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/landing-zone/aws-app-account-baseline-wrapper.md b/docs/reference/services/landing-zone/aws-app-account-baseline-wrapper.md
index e8366d7fa..be044afc6 100644
--- a/docs/reference/services/landing-zone/aws-app-account-baseline-wrapper.md
+++ b/docs/reference/services/landing-zone/aws-app-account-baseline-wrapper.md
@@ -16,15 +16,17 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Account Baseline for app accounts
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/account-baseline-app" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/account-baseline-app" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=landingzone%2Faccount-baseline-app" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
+<a href="https://github.com/gruntwork-io/terraform-aws-cis-service-catalog/tree/master/modules/landingzone/account-baseline-app" className="link-button" title="CIS subscribers may view documentation the compliant version of this module in GitHub.">Compliance Docs</a>
+
 ## Overview
 
 A security baseline for AWS Landing Zone for configuring the app accounts (dev, stage, prod, and other similar child
@@ -1611,5 +1613,5 @@ A map of ARNs of the service linked roles created from <a href="#service_linked_
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"c185e4e4ac16c1c955e3637ad06226a8"}
+{"sourcePlugin":"service-catalog-api","hash":"edc02d833b052babdcb407713c62201c"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/landing-zone/aws-root-account-baseline-wrapper.md b/docs/reference/services/landing-zone/aws-root-account-baseline-wrapper.md
index 748c4b2f4..8c79361e6 100644
--- a/docs/reference/services/landing-zone/aws-root-account-baseline-wrapper.md
+++ b/docs/reference/services/landing-zone/aws-root-account-baseline-wrapper.md
@@ -16,15 +16,17 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Account Baseline for root account
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/account-baseline-root" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/account-baseline-root" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=landingzone%2Faccount-baseline-root" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
+<a href="https://github.com/gruntwork-io/terraform-aws-cis-service-catalog/tree/master/modules/landingzone/account-baseline-root" className="link-button" title="CIS subscribers may view documentation the compliant version of this module in GitHub.">Compliance Docs</a>
+
 ## Overview
 
 A security baseline for AWS Landing Zone for configuring the root account (AKA master account) of an AWS Organization, including setting up
@@ -1955,5 +1957,5 @@ A map of user name to that user's AWS Web Console password, encrypted with that
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"477a9172b13ca7c4261c4cc5bd5e6d4e"}
+{"sourcePlugin":"service-catalog-api","hash":"71380366ec67d287219e9fa3204ac572"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/landing-zone/aws-security-account-baseline-wrapper.md b/docs/reference/services/landing-zone/aws-security-account-baseline-wrapper.md
index ccb7d900c..5b2c8cbd6 100644
--- a/docs/reference/services/landing-zone/aws-security-account-baseline-wrapper.md
+++ b/docs/reference/services/landing-zone/aws-security-account-baseline-wrapper.md
@@ -16,15 +16,17 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Account Baseline for security account
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/account-baseline-security" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/account-baseline-security" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=landingzone%2Faccount-baseline-security" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
+<a href="https://github.com/gruntwork-io/terraform-aws-cis-service-catalog/tree/master/modules/landingzone/account-baseline-security" className="link-button" title="CIS subscribers may view documentation the compliant version of this module in GitHub.">Compliance Docs</a>
+
 ## Overview
 
 A security baseline for AWS Landing Zone for configuring the security account (the one where all your IAM users and IAM groups are defined), including setting up
@@ -2064,5 +2066,5 @@ A map of usernames to that user's AWS Web Console password, encrypted with that
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"9887c8f5545a901cbe49add9fe6061b9"}
+{"sourcePlugin":"service-catalog-api","hash":"1cd415f9c3d0809b514710ee946e9fae"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/landing-zone/gruntwork-access.md b/docs/reference/services/landing-zone/gruntwork-access.md
index ecb8a2a5d..a90f69f0a 100644
--- a/docs/reference/services/landing-zone/gruntwork-access.md
+++ b/docs/reference/services/landing-zone/gruntwork-access.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.20.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.20.0"/>
 
 # Gruntwork Access
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/gruntwork-access" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/gruntwork-access" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=landingzone%2Fgruntwork-access" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -179,5 +179,5 @@ The name of the IAM role
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"065eb90b0c1b06c0cef6779d136c64fd"}
+{"sourcePlugin":"service-catalog-api","hash":"dc51af9ee13c51a7ba31d19e34e2b154"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/landing-zone/iam-users-and-iam-groups.md b/docs/reference/services/landing-zone/iam-users-and-iam-groups.md
index 8b4c48b26..af8b981a9 100644
--- a/docs/reference/services/landing-zone/iam-users-and-iam-groups.md
+++ b/docs/reference/services/landing-zone/iam-users-and-iam-groups.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.50.2"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.50.2"/>
 
 # IAM Users and IAM Groups
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/iam-users-and-groups" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/landingzone/iam-users-and-groups" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=landingzone%2Fiam-users-and-groups" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -663,5 +663,5 @@ A map of usernames to that user's AWS Web Console password, encrypted with that
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"d9eba129228397ff4904ce36bfbc806a"}
+{"sourcePlugin":"service-catalog-api","hash":"117b9f3f898d4b7b675316b8b2479d9c"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/networking/elastic-load-balancer-elb.md b/docs/reference/services/networking/elastic-load-balancer-elb.md
index 74d070e9d..2a98344ed 100644
--- a/docs/reference/services/networking/elastic-load-balancer-elb.md
+++ b/docs/reference/services/networking/elastic-load-balancer-elb.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Application Load Balancer
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/alb" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/alb" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=networking%2Falb" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -514,5 +514,5 @@ The AWS-managed DNS name assigned to the ALB.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"0167a21c8823623a72661480c27bfbef"}
+{"sourcePlugin":"service-catalog-api","hash":"63693a94f0a44ffb48bf9c57604222f2"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/networking/management-vpc.md b/docs/reference/services/networking/management-vpc.md
index a1f1109e5..e2ae9f452 100644
--- a/docs/reference/services/networking/management-vpc.md
+++ b/docs/reference/services/networking/management-vpc.md
@@ -16,15 +16,17 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.83.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.83.0"/>
 
 # Management VPC
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/vpc-mgmt" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/vpc-mgmt" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=networking%2Fvpc-mgmt" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
+<a href="https://github.com/gruntwork-io/terraform-aws-cis-service-catalog/tree/master/modules/networking/vpc-mgmt" className="link-button" title="CIS subscribers may view documentation the compliant version of this module in GitHub.">Compliance Docs</a>
+
 ## Overview
 
 This service contains code to deploy a [Virtual Private Cloud (VPC)](https://aws.amazon.com/vpc/) on AWS that can be
@@ -636,5 +638,5 @@ Indicates whether or not the VPC has finished creating
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"239b6fdab765e54b3f019128e1cbb930"}
+{"sourcePlugin":"service-catalog-api","hash":"d921b67604960b462a74f1269b94a500"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/networking/route-53-hosted-zones.md b/docs/reference/services/networking/route-53-hosted-zones.md
index fb4d19758..5595df4fe 100644
--- a/docs/reference/services/networking/route-53-hosted-zones.md
+++ b/docs/reference/services/networking/route-53-hosted-zones.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.83.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.83.0"/>
 
 # Route 53 Hosted Zones
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/route53" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/route53" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=networking%2Froute53" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -240,5 +240,5 @@ A map of domains to resource arns and hosted zones of the created Service Discov
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"916cfcac2e1777663cda67d740bfbcf4"}
+{"sourcePlugin":"service-catalog-api","hash":"47f18d60c3041d84728a54885c21942d"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/networking/sns-topics.md b/docs/reference/services/networking/sns-topics.md
index 2132f016b..2dee41309 100644
--- a/docs/reference/services/networking/sns-topics.md
+++ b/docs/reference/services/networking/sns-topics.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.85.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.85.0"/>
 
 # Amazon Simple Notification Service
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/sns-topics" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/sns-topics" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=networking%2Fsns-topics" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -219,5 +219,5 @@ The ARN of the SNS topic.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"d3727100ec3042b52a6cd63c62226adc"}
+{"sourcePlugin":"service-catalog-api","hash":"72911176b8dd97a347c810f7ee096a2b"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/networking/virtual-private-cloud-vpc.md b/docs/reference/services/networking/virtual-private-cloud-vpc.md
index 4451dc1dc..72aad7b20 100644
--- a/docs/reference/services/networking/virtual-private-cloud-vpc.md
+++ b/docs/reference/services/networking/virtual-private-cloud-vpc.md
@@ -16,15 +16,17 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.84.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.84.0"/>
 
 # VPC
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/vpc" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/networking/vpc" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=networking%2Fvpc" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
+<a href="https://github.com/gruntwork-io/terraform-aws-cis-service-catalog/tree/master/modules/networking/vpc" className="link-button" title="CIS subscribers may view documentation the compliant version of this module in GitHub.">Compliance Docs</a>
+
 ## Overview
 
 This service contains code to deploy a [Virtual Private Cloud (VPC)](https://aws.amazon.com/vpc) on AWS that can be used
@@ -1132,5 +1134,5 @@ Indicates whether or not the VPC has finished creating
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"51f571582e21a3df9ee4f4a09cb96c8c"}
+{"sourcePlugin":"service-catalog-api","hash":"d415f9165e63e854f0355afcb20d4178"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/security/bastion.md b/docs/reference/services/security/bastion.md
index e4f9dadd3..6371d9794 100644
--- a/docs/reference/services/security/bastion.md
+++ b/docs/reference/services/security/bastion.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.84.4"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.84.4"/>
 
 # Bastion Host
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/bastion-host" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/bastion-host" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=mgmt%2Fbastion-host" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -505,5 +505,5 @@ The fully qualified name of the bastion host.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"2e68569b512ec885db54839608723236"}
+{"sourcePlugin":"service-catalog-api","hash":"6f45ed461446d9f04e46794c94b16778"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/security/open-vpn.md b/docs/reference/services/security/open-vpn.md
index 0c05b36c7..8f02a340e 100644
--- a/docs/reference/services/security/open-vpn.md
+++ b/docs/reference/services/security/open-vpn.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.84.4"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.84.4"/>
 
 # OpenVPN Server
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/openvpn-server" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/mgmt/openvpn-server" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=mgmt%2Fopenvpn-server" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -801,5 +801,5 @@ The security group ID of the OpenVPN server.
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"2712c9782a44caa910440c346cd98371"}
+{"sourcePlugin":"service-catalog-api","hash":"5c273b75d0a09e73025ff80511462e81"}
 ##DOCS-SOURCER-END -->
diff --git a/docs/reference/services/security/tls-scripts.md b/docs/reference/services/security/tls-scripts.md
index 53c397c84..bea530fd3 100644
--- a/docs/reference/services/security/tls-scripts.md
+++ b/docs/reference/services/security/tls-scripts.md
@@ -16,12 +16,12 @@ import TabItem from '@theme/TabItem';
 import VersionBadge from '../../../../src/components/VersionBadge.tsx';
 import { HclListItem, HclListItemDescription, HclListItemTypeDetails, HclListItemDefaultValue } from '../../../../src/components/HclListItem.tsx';
 
-<VersionBadge version="0.85.0" lastModifiedVersion="0.77.0"/>
+<VersionBadge version="0.85.1" lastModifiedVersion="0.77.0"/>
 
 # TLS Scripts
 
 
-<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/tls-scripts" className="link-button">View Source</a>
+<a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/tree/master/modules/tls-scripts" className="link-button" title="View the source code for this module in GitHub.">View Source</a>
 
 <a href="https://github.com/gruntwork-io/terraform-aws-service-catalog/releases?q=tls-scripts" className="link-button" title="Release notes for only the service catalog versions which impacted this service.">Release Notes</a>
 
@@ -100,5 +100,5 @@ If you’ve never used the Service Catalog before, make sure to read
 
 
 <!-- ##DOCS-SOURCER-START
-{"sourcePlugin":"service-catalog-api","hash":"01106166a8bf71fc37bb1ff2751bee26"}
+{"sourcePlugin":"service-catalog-api","hash":"b682754ceae9a531266822ff3a928290"}
 ##DOCS-SOURCER-END -->
diff --git a/package.json b/package.json
index f3cdf43de..204cd70ab 100644
--- a/package.json
+++ b/package.json
@@ -46,7 +46,7 @@
     "typescript": "^4.3.5"
   },
   "optionalDependencies": {
-    "docs-sourcer": "git+ssh://git@github.com/gruntwork-io/docs-sourcer.git#v0.0.18"
+    "docs-sourcer": "git+ssh://git@github.com/gruntwork-io/docs-sourcer.git#v0.0.19"
   },
   "browserslist": {
     "production": [
diff --git a/src/components/Modal.tsx b/src/components/Modal.tsx
index b0980aacc..78ce7de22 100644
--- a/src/components/Modal.tsx
+++ b/src/components/Modal.tsx
@@ -1,12 +1,10 @@
 import React, { useEffect } from "react"
 import ModalCmp from "react-modal"
-import { DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY } from "../theme/Root"
 import styles from "./Modal.module.css"
 
 interface ModalProps {
-  externalLink: string
   showModal: boolean
-  children?: React.ReactNode
+  children: React.ReactNode
   shouldCloseOnEsc?: boolean
   shouldAcceptOnEnter?: boolean
   shouldCloseOnOverlayClick?: boolean
@@ -20,32 +18,21 @@ if (typeof window !== "undefined") {
   ModalCmp.setAppElement("body")
 }
 
-export const SubscriptionNoticeModal: React.FC<ModalProps> = ({
-  externalLink,
+export const Modal: React.FC<ModalProps> = ({
   showModal,
   shouldCloseOnEsc = true,
   shouldAcceptOnEnter = false,
   shouldCloseOnOverlayClick = true,
   handleCancelRequest,
   handleAcceptRequest,
+  children,
 }) => {
   const onRequestClose = (e) => {
-    // If the user checked to never see this notice but subsequently cancels we will disregard their selection. We will
-    // only stop showing this notice if they check the box and then proceed to GitHub
-    if (window.localStorage.getItem(DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY)) {
-      window.localStorage.removeItem(DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY)
-    }
-
     handleCancelRequest()
-
     // prevent the browser from handling a Cancel button click and scrolling to top
     e.preventDefault()
   }
 
-  const gitHubRepoName = externalLink.match(
-    /https:\/\/github.com\/gruntwork-io\/(.*?)\/.*/
-  )
-
   // function to check if there's any active button (focus on the button) to avoid conflicts with shouldAcceptOnEnter property
   const checkIfAnyActiveButton = () => {
     const activeElement = document.activeElement
@@ -87,15 +74,6 @@ export const SubscriptionNoticeModal: React.FC<ModalProps> = ({
     }
   })
 
-  const setDontWarnMe = (event) => {
-    event.stopPropagation()
-    if (!window.localStorage.getItem(DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY)) {
-      window.localStorage.setItem(DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY, "true")
-    } else {
-      window.localStorage.removeItem(DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY)
-    }
-  }
-
   return (
     <ModalCmp
       isOpen={showModal}
@@ -107,26 +85,7 @@ export const SubscriptionNoticeModal: React.FC<ModalProps> = ({
       className={styles.mainContainer}
       overlayClassName={styles.overlay}
     >
-      <h2>For Subscribers Only</h2>
-      <p>
-        This link leads to the private{" "}
-        {gitHubRepoName && gitHubRepoName.length >= 1 && (
-          <code>{gitHubRepoName[1]}</code>
-        )}{" "}
-        repository visible only to subscribers; everyone else will see a 404.
-      </p>
-      <div>
-        <input type="checkbox" onClick={setDontWarnMe} />
-        <label>Don't warn me again</label>
-      </div>
-      <div className={styles.buttonsContainer}>
-        <a onClick={(e) => onRequestClose(e)} href="#">
-          Cancel
-        </a>
-        <a id={idOfNoticeLink} href={externalLink} target="_blank">
-          Continue to GitHub
-        </a>
-      </div>
+      {children}
     </ModalCmp>
   )
 }
diff --git a/src/components/SubscribersOnlyModal.tsx b/src/components/SubscribersOnlyModal.tsx
new file mode 100644
index 000000000..f56ab8cc2
--- /dev/null
+++ b/src/components/SubscribersOnlyModal.tsx
@@ -0,0 +1,90 @@
+import React from "react"
+import { Modal } from "./Modal"
+import styles from "./Modal.module.css"
+
+interface SubscribersOnlyModalProps {
+  externalLink: string
+  localStorageKey: string
+  subscriberType?: string
+  showModal: boolean
+  handleCancelRequest: () => void
+  handleAcceptRequest?: () => void
+}
+
+export const SubscribersOnlyModal: React.FC<SubscribersOnlyModalProps> = ({
+  externalLink,
+  localStorageKey,
+  subscriberType,
+  showModal,
+  handleCancelRequest,
+  handleAcceptRequest,
+}) => {
+  const onRequestClose = (e) => {
+    // If the user checked to never see this notice but subsequently cancels we will disregard their selection. We will
+    // only stop showing this notice if they check the box and then proceed to GitHub
+    if (window.localStorage.getItem(localStorageKey)) {
+      window.localStorage.removeItem(localStorageKey)
+    }
+
+    handleCancelRequest()
+
+    // prevent the browser from handling a Cancel button click and scrolling to top
+    e.preventDefault()
+  }
+
+  const gitHubRepoName = externalLink.match(
+    /https:\/\/github.com\/gruntwork-io\/(.*?)\/.*/
+  )
+
+  const setDontWarnMe = (event) => {
+    event.stopPropagation()
+    if (!window.localStorage.getItem(localStorageKey)) {
+      window.localStorage.setItem(localStorageKey, "true")
+    } else {
+      window.localStorage.removeItem(localStorageKey)
+    }
+  }
+
+  return (
+    <Modal
+      showModal={showModal}
+      shouldCloseOnEsc={true}
+      shouldAcceptOnEnter={false}
+      shouldCloseOnOverlayClick={true}
+      handleCancelRequest={handleCancelRequest}
+      handleAcceptRequest={handleAcceptRequest}
+    >
+      <h2>
+        {subscriberType
+          ? `For ${subscriberType} Subscribers Only`
+          : "For Subscribers Only"}
+      </h2>
+      <p>
+        This link leads to the private{" "}
+        {gitHubRepoName && gitHubRepoName.length >= 1 && (
+          <code>{gitHubRepoName[1]}</code>
+        )}{" "}
+        repository visible only to subscribers; everyone else will see a 404.
+      </p>
+      <div>
+        <input type="checkbox" onClick={setDontWarnMe} />
+        <label>Don't warn me again</label>
+      </div>
+      <div className={styles.buttonsContainer}>
+        <a onClick={(e) => onRequestClose(e)} href="#">
+          Cancel
+        </a>
+        <a
+          href={externalLink}
+          target="_blank"
+          data-modal-exempt={true}
+          onClick={() => {
+            handleAcceptRequest()
+          }}
+        >
+          Continue to GitHub
+        </a>
+      </div>
+    </Modal>
+  )
+}
diff --git a/src/theme/Root.js b/src/theme/Root.js
index fee595f21..bae284e82 100644
--- a/src/theme/Root.js
+++ b/src/theme/Root.js
@@ -1,11 +1,10 @@
 import React, { useState, useEffect } from "react"
-import {
-  SubscriptionNoticeModal,
-  idOfNoticeLink,
-} from "/src/components/Modal.tsx"
+import { SubscribersOnlyModal } from "/src/components/SubscribersOnlyModal.tsx"
 
 const gruntworkGithubOrg = "https://github.com/gruntwork-io/"
 
+const gruntworkCisRepoName = "terraform-aws-cis-service-catalog"
+
 const publicGruntworkRepoNames = [
   "bash-commons",
   "cloud-nuke",
@@ -55,50 +54,94 @@ const publicGruntworkRepoNames = [
 ]
 
 /**
- * Checks if a link is referencing a known public repo
+ * Checks if a link references a known public Gruntwork repo
  *
- * @param string repoLink
+ * @param string url
  * @return {boolean}
  */
-const isPublicGruntworkRepo = (repoLink) => {
+const isPublicGruntworkRepo = (url) => {
+  if (!url) {
+    return false
+  }
   // Match a link prefixed by the gruntworkGithubOrg and capture the next path reference
   const pattern = new RegExp(`^${gruntworkGithubOrg}(.*?)(\/|$)`)
   // e.g for a given link https://github.com/gruntwork-io/docs/intro -> `docs`
-  const repoName = repoLink.match(pattern)[1]
+  const repoName = url.match(pattern)[1]
 
   // returns boolean
   return publicGruntworkRepoNames.includes(repoName)
 }
 
+/**
+ * Checks if a link references a private Gruntwork repo
+ *
+ * @param string url
+ * @return {boolean}
+ */
+const isPrivateGruntworkRepo = (url) => {
+  return (
+    url && url.startsWith(gruntworkGithubOrg) && !isPublicGruntworkRepo(url)
+  )
+}
+
+/**
+ * Checks if a link references the Gruntwork CIS service catalog repo
+ *
+ * @param string url
+ * @return {boolean}
+ */
+
+const isGruntworkCisRepo = (url) => {
+  return url && url.startsWith(`${gruntworkGithubOrg}${gruntworkCisRepoName}`)
+}
+
 export const DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY = "dontWarnGitHubLinks"
+export const DONT_SHOW_CIS_GITHUB_WARNING_KEY = "dontWarnCISLinks"
 
 function Root({ children }) {
   const [displaySubscriberNotice, setDisplaySubscriberNotice] = useState(false)
-  const [externalLink, setExternalLink] = useState("")
+  const [subscriberNoticeLink, setSubscriberNoticeLink] = useState("")
+
+  const [displayCisNotice, setDisplayCisNotice] = useState(false)
+  const [cisNoticeLink, setCisNoticeLink] = useState("")
 
   useEffect(() => {
     const listener = (event) => {
-      if (event.target.id === idOfNoticeLink) {
-        setDisplaySubscriberNotice(false)
+      // Allow clicks on the external GitHub link FROM the modal notices to work normally
+      if (event.target.dataset.modalExempt) {
         return
       }
-      const dontWarn = window.localStorage.getItem(
-        DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY
-      )
 
-      if (dontWarn) {
-        setDisplaySubscriberNotice(false)
+      if (isGruntworkCisRepo(event.target.href)) {
+        const dontWarn = window.localStorage.getItem(
+          DONT_SHOW_CIS_GITHUB_WARNING_KEY
+        )
+
+        if (dontWarn) {
+          setDisplayCisNotice(false)
+          return
+        }
+
+        event.preventDefault()
+        setCisNoticeLink(event.target.href)
+        setDisplayCisNotice(true)
         return
       }
 
-      if (
-        event.target.href &&
-        event.target.href.startsWith(gruntworkGithubOrg) &&
-        !isPublicGruntworkRepo(event.target.href)
-      ) {
+      if (isPrivateGruntworkRepo(event.target.href)) {
+        const dontWarn = window.localStorage.getItem(
+          DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY
+        )
+
+        if (dontWarn) {
+          setDisplaySubscriberNotice(false)
+          return
+        }
+
         event.preventDefault()
-        setExternalLink(event.target.href)
+        setSubscriberNoticeLink(event.target.href)
         setDisplaySubscriberNotice(true)
+        return
       }
     }
 
@@ -110,12 +153,29 @@ function Root({ children }) {
 
   return (
     <>
-      <SubscriptionNoticeModal
+      <SubscribersOnlyModal
         showModal={displaySubscriberNotice}
-        externalLink={externalLink}
+        externalLink={subscriberNoticeLink}
+        localStorageKey={DONT_SHOW_PRIVATE_GITHUB_WARNING_KEY}
         handleCancelRequest={() => {
           setDisplaySubscriberNotice(false)
-          setExternalLink("")
+          setSubscriberNoticeLink("")
+        }}
+        handleAcceptRequest={() => {
+          setDisplaySubscriberNotice(false)
+        }}
+      />
+      <SubscribersOnlyModal
+        showModal={displayCisNotice}
+        externalLink={cisNoticeLink}
+        localStorageKey={DONT_SHOW_CIS_GITHUB_WARNING_KEY}
+        subscriberType="CIS"
+        handleCancelRequest={() => {
+          setDisplayCisNotice(false)
+          setCisNoticeLink("")
+        }}
+        handleAcceptRequest={() => {
+          setDisplayCisNotice(false)
         }}
       />
       {children}
diff --git a/yarn.lock b/yarn.lock
index fa4b6bb1c..7be00b47d 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -5341,9 +5341,9 @@ dns-txt@^2.0.2:
   dependencies:
     buffer-indexof "^1.0.0"
 
-"docs-sourcer@git+ssh://git@github.com/gruntwork-io/docs-sourcer.git#v0.0.18":
+"docs-sourcer@git+ssh://git@github.com/gruntwork-io/docs-sourcer.git#v0.0.19":
   version "0.0.1"
-  resolved "git+ssh://git@github.com/gruntwork-io/docs-sourcer.git#4f6d8374e89f253760414c0e64d5432ac96a97f3"
+  resolved "git+ssh://git@github.com/gruntwork-io/docs-sourcer.git#40c1bd2d0422a7346549f53ca13ad5f255f616b5"
   dependencies:
     "@octokit/auth-app" "^3.6.1"
     "@octokit/plugin-retry" "^3.0.9"