Apply docs review suggestions

egregius313 · saritai · egregius313 · commit 43d79dc5b80b · 2023-03-27T12:16:44.000-04:00
Co-authored-by: Sarita Iyer &lt;66540150+saritai@users.noreply.github.com&gt;
diff --git a/java/ql/src/Security/CWE/CWE-522/InsecureLdapAuth.qhelp b/java/ql/src/Security/CWE/CWE-522/InsecureLdapAuth.qhelp
@@ -33,7 +33,7 @@
 
     <p>
       In the following (good) example, a <code>ldap://</code> URL is used, but
-      SASL authentication is enabled.
+      SASL authentication is enabled so that the credentials will be encrypted. 
     </p>
     <sample src="LdapEnableSasl.java"/>
   </example>
diff --git a/java/ql/src/change-notes/2023-03-08-insecure-ldap-authentication.md b/java/ql/src/change-notes/2023-03-08-insecure-ldap-authentication.md
@@ -1,4 +1,4 @@
 ---
 category: newQuery
 ---
-* The query `java/insecure-ldap-auth` has been promoted from experimental to the main query pack. This query was originally [submitted as an experimental query by @luchua-bc](https://github.com/github/codeql/pull/4854)
+* The query `java/insecure-ldap-auth` has been promoted from experimental to the main query pack. This query detects transmission of cleartext credentials in LDAP authentication. Insecure LDAP authentication causes sensitive information to be vulnerable to remote attackers. This query was originally [submitted as an experimental query by @luchua-bc](https://github.com/github/codeql/pull/4854)
