Hey GBushey, thanks for the answer! I have now created the feature request, thanks for the reference.
They are in fact originating from Microsoft Defender 365- But why would a ticket closed in Sentinel, be re-opened in the scenario you are describing?
I understand the scenario of an open Sentinel Incident being closed by MS Automation as part of the bidirectional synch, if the incident is closed from Microsoft Defender 365.