The 4-step picture in the article isn’t the current way TLS works.
Nowadays, the server’s public key is used for authenticity checks only. For agreeing keys, both parties use ephemeral Diffie-Hellman. DHE provides perfect forward secrecy (PFS). The old scheme shown in their picture doesn’t provide PFS.