diff --git a/CHANGELOG.asciidoc b/CHANGELOG.asciidoc
index 0994f6ff9c48..3ad46ad35a56 100644
--- a/CHANGELOG.asciidoc
+++ b/CHANGELOG.asciidoc
@@ -24,9 +24,12 @@ The 8.11.3 patch release contains a fix for a potential security vulnerability.
 === Beats version 8.11.2
 https://github.com/elastic/beats/compare/v8.11.1\...v8.11.2[View commits]
 
+The 8.11.2 patch release contains a fix for a potential security vulnerability. https://discuss.elastic.co/c/announcements/security-announcements/31[Please see our security advisory for more details].
+
 ==== Breaking changes
 
 *Affecting all Beats*
+
 - Avoid logging fields values when handling Elasticsearch output errors except at the debug log level. The debug log level must now be used to see detailed errors, for example mapping errors and their cause. {pull}37229[37229]
 
 ==== Bugfixes