From 340a4523c3903f92b5137b19e0f9c998677b9136 Mon Sep 17 00:00:00 2001
From: Christophe Maudoux <chrmdx@gmail.com>
Date: Thu, 10 Dec 2020 23:07:35 +0100
Subject: [PATCH] Update release note (#2394)

---
 doc/sources/admin/upgrade_2_0_x.rst | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/doc/sources/admin/upgrade_2_0_x.rst b/doc/sources/admin/upgrade_2_0_x.rst
index 3801126e5..f41afeffe 100644
--- a/doc/sources/admin/upgrade_2_0_x.rst
+++ b/doc/sources/admin/upgrade_2_0_x.rst
@@ -21,6 +21,8 @@ backups and a rollback plan ready!
 ------
 
 - New dependency: IO::Socket::Timeout
+- TOTP check tolerates forward AND backward clock drift (totp2fRange)
+- Avoid assignment in expressions option is disabled by default
 
 2.0.9
 -----
@@ -31,7 +33,7 @@ backups and a rollback plan ready!
    (see also `#2244 <https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/issues/2244>`__)
 -  SAML SOAP calls are now using ``text/xml`` instead of ``application/xml`` as the MIME Content Type, as required by `the SOAP standard <https://www.w3.org/TR/2000/NOTE-SOAP-20000508/#_Toc478383526>`__
 -  Incremental lock times values can now be set in BruteForceProtection plugin through Manager.
-   It must be a list of comma separated values. Default values are ``5, 15, 60, 300, 600``
+   It MUST be a list of comma separated values. Default values are ``5, 15, 60, 300, 600``
 
 Cookie issues with Chrome
 ~~~~~~~~~~~~~~~~~~~~~~~~~