diff --git a/xml/System.Security.Cryptography/AesManaged.xml b/xml/System.Security.Cryptography/AesManaged.xml
index 7a5d6043234..0a59466018d 100644
--- a/xml/System.Security.Cryptography/AesManaged.xml
+++ b/xml/System.Security.Cryptography/AesManaged.xml
@@ -41,7 +41,8 @@
 > [!NOTE]
 >  If the Windows security policy setting for Federal Information Processing Standards (FIPS)-compliant algorithms is enabled, using this algorithm throws a <xref:System.Security.Cryptography.CryptographicException>.  
   
-   
+> [!NOTE]
+> Microsoft believes that it's no longer safe to decrypt data encrypted with the Cipher-Block-Chaining (CBC) mode of symmetric encryption (which is the default value of the <xref:System.Security.Cryptography.AesManaged.Mode> property) when verifiable padding has been applied without first ensuring the integrity of the ciphertext, except for very specific circumstances. For more information, see [Timing vulnerabilities with CBC-mode symmetric decryption using padding](~/docs/standard/security/vulnerabilities-cbc-mode.md).
   
 ## Examples  
  The following example demonstrates how to encrypt and decrypt sample data using the <xref:System.Security.Cryptography.AesManaged> class.  
@@ -747,4 +748,4 @@
       </Docs>
     </Member>
   </Members>
-</Type>
\ No newline at end of file
+</Type>