I have this issue as well.  Removing URL Malware from my URL filtering policy has made it work.  I previously tried whitelisting the URL (HTTP/S) and, while that adds the URL into my whitelist, it does not supersede the URL Malware list.

Frustrating.

Interesting... I'm seeing this same thing as well for a handful of IP's on my internal LAN, but I can browse to https://www.microsoft.com without issue.  Haven't heard any complaints from any end users yet. 

** Side note** Has anyone here seen an increase in "URL Malware" URL Blocks to https://mv-s2s-dev.ngrok.io?

I've seen this URL being blocked daily since about the 5th of September.  Google doesn't reveal much about it.  It triggers IOC's on some of our hosts every day.

You can 'Trust' microsoft.com, this should take care of it. Alternatively you can also add it to whitelist from the event log, deploy policy after you do that, to be sure.