diff --git a/python/ql/src/change-notes/2024-03-04-nosql-injection.md b/python/ql/src/change-notes/2024-03-04-nosql-injection.md
new file mode 100644
index 000000000000..6e98540c757c
--- /dev/null
+++ b/python/ql/src/change-notes/2024-03-04-nosql-injection.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* The query `py/nosql-injection` for finding NoSQL injection vulnerabilities is now part of the default security suite.