diff --git a/.changelog/17907.txt b/.changelog/17907.txt
new file mode 100644
index 000000000..3272c0e3a
--- /dev/null
+++ b/.changelog/17907.txt
@@ -0,0 +1,3 @@
+```release-note:security
+sentinel (Enterprise): Fixed a bug where ACL tokens could be exfiltrated via Sentinel logs [CVE-2023-3299](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3299)
+```