diff --git a/python/ql/src/change-notes/2023-09-18-promoted-nosql-injection-query.md b/python/ql/src/change-notes/2023-09-18-promoted-nosql-injection-query.md
new file mode 100644
index 00000000000..2b30fd492d5
--- /dev/null
+++ b/python/ql/src/change-notes/2023-09-18-promoted-nosql-injection-query.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* The query `py/nosql-injection` for finding NoSQL injection vulnerabilities is now available in the default security suite.