diff --git a/staging/podsecuritypolicy/rbac/bindings.yaml b/staging/podsecuritypolicy/rbac/bindings.yaml
index b07f99ee..13b8ac3c 100644
--- a/staging/podsecuritypolicy/rbac/bindings.yaml
+++ b/staging/podsecuritypolicy/rbac/bindings.yaml
@@ -31,7 +31,8 @@ roleRef:
    kind: ClusterRole
    name: restricted-psp-user
 ---
-# edit grants edit role to system:authenticated.
+# edit grants edit role to the groups
+# restricted and privileged.
 apiVersion: rbac.authorization.k8s.io/v1beta1
 kind: ClusterRoleBinding
 metadata:
diff --git a/staging/podsecuritypolicy/rbac/policies.yaml b/staging/podsecuritypolicy/rbac/policies.yaml
index 7519091b..6ddd9422 100644
--- a/staging/podsecuritypolicy/rbac/policies.yaml
+++ b/staging/podsecuritypolicy/rbac/policies.yaml
@@ -35,4 +35,5 @@ spec:
   - 'downwardAPI'
   - 'configMap'
   - 'persistentVolumeClaim'
+  - 'projected'