Microsoft has updated the security baseline for Microsoft 365 Apps for enterprise. It includes protection from JScript code execution attacks and unsigned macros. Administrators can use Microsoft-recommended Group Policy Object (GPO) baselines to reduce the attack surface of Office 365 Apps and boost the security posture of enterprise endpoints they run on. Future security baselines will be aligned with Microsoft 365 apps for every June and December releases of the company’s 365 Apps. Microsoft also provides all the recommended settings in spreadsheet form, together with an updated custom administrative template.
Source: https://www.bleepingcomputer.com/news/security/office-365-security-baseline-adds-macro-signing-jscript-protection/