diff --git a/docs/releasenotes.rst b/docs/releasenotes.rst
index 5b0188b3f67c9aa18167e5786bf9389cc14adf16..34dc23c99a7fc7d6b201350f69d7e3cdc378496a 100644
--- a/docs/releasenotes.rst
+++ b/docs/releasenotes.rst
@@ -29,18 +29,35 @@ Breaking changes:
     ciphers. This could introduce incompatibility with older
     clients/servers trying to connect to the SMTP server.
 
+* ``ldap_server`` role
+
+  * Updated default set of TLS ciphers used by server
+    (``ldap_tls_ciphers`` parameter). All CBC ciphers have been
+    dropped. This could introduce incompatibility with older clients
+    trying to connect to the LDAP server.
+
 * ``mail_server`` role
 
   * Use 2048-bit Diffie-Hellman parameters for relevant TLS
     ciphers. This could introduce incompatibility with older
     clients/servers trying to connect to the SMTP/IMAP server.
 
+  * Updated default set of TLS ciphers used by IMAP/SMTP servers
+    (``mail_server_tls_ciphers`` parameter). All CBC ciphers have been
+    dropped. This could introduce incompatibility with older clients
+    trying to connect to the IMAP/SMTP server.
+
 * ``web_server`` role
 
   * Use 2048-bit Diffie-Hellman parameters for relevant TLS
     ciphers. This could introduce incompatibility with older clients
     trying to connect to the web server.
 
+  * Updated default set of TLS ciphers used by the server
+    (``web_server_tls_ciphers`` parameter). All CBC ciphers have been
+    dropped. This could introduce incompatibility with older clients
+    trying to connect to the server.
+
 * ``xmpp_server`` role
 
   * Use 2048-bit Diffie-Hellman parameters for relevant TLS