diff --git a/content/en/boilerplates/notes/1.1.14.md b/content/en/boilerplates/notes/1.1.14.md
index 1550ab18da..56c282b32d 100644
--- a/content/en/boilerplates/notes/1.1.14.md
+++ b/content/en/boilerplates/notes/1.1.14.md
@@ -7,4 +7,4 @@ You can find the gRPC vulnerability fix description on their mailing list (c.f.
 
 ## Bug fix
 
-This release fixes a bug which was introduced during the security vulnerability fix of 1.1.13: 503 HTTP errors were returned on HTTP requests attempting to upgrade to HTTP2.
+- Fix an Envoy bug that breaks `java.net.http.HttpClient` and other clients that attempt to upgrade from `HTTP/1.1` to `HTTP/2` using the `Upgrade: h2c` header ([Issue 16391](https://github.com/istio/istio/issues/16391)).
diff --git a/content/en/boilerplates/notes/1.2.5.md b/content/en/boilerplates/notes/1.2.5.md
index 1ad68d80f5..c7c3b53351 100644
--- a/content/en/boilerplates/notes/1.2.5.md
+++ b/content/en/boilerplates/notes/1.2.5.md
@@ -7,5 +7,5 @@ You can find the gRPC vulnerability fix description on their mailing list (c.f.
 
 ## Bug fixes
 
-- This release fixes a bug which was introduced during the security vulnerability fix of 1.2.4: 503 HTTP errors were returned on HTTP requests attempting to upgrade to HTTP2.
-- Fix a goroutine leak on send timeout ([Issue 15876](https://github.com/istio/istio/issues/15876))
+- Fix an Envoy bug that breaks `java.net.http.HttpClient` and other clients that attempt to upgrade from `HTTP/1.1` to `HTTP/2` using the `Upgrade: h2c` header ([Issue 16391](https://github.com/istio/istio/issues/16391)).
+- Fix a goroutine leak on send timeout ([Issue 15876](https://github.com/istio/istio/issues/15876)).