Find OS patch events in Log Analytics

I had a requirement recent where we needed to quickly review when patches occurred against a range of servers. While we use a patch management solution, querying can be arduous and, just as well, isn't comprehensive of other logged events. We use Azure Monitor Agent (AMA) and pull the 3 Windows Event logs, amongst various others, into Log Analytics. The solution is quick and easy but I'm posting it here for quick access in the future. You can modify this starting point many ways to find the information you need.