Question 1: According to standard 31000 external issues can be: Setting cultural, social, political, legal, financial, technological, etc. But what information about those items I need to be in compliance with section 4.1 of ISO 27001?
Question 2: Which document should I put this information?
Sure, I will give you an easy example. External context: Information systems of the organization outsourced in an external data center. Interested party: The external company that manages the data center.