From 8438276e6f4103dcd2ea64419af067a82bb71589 Mon Sep 17 00:00:00 2001
From: Javier Eguiluz <javier.eguiluz@gmail.com>
Date: Thu, 5 Dec 2019 11:14:58 +0100
Subject: [PATCH] Minor tweak in a security expression explanation

---
 security/expressions.rst | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/security/expressions.rst b/security/expressions.rst
index 82a2aebee31..87aa4388ab6 100644
--- a/security/expressions.rst
+++ b/security/expressions.rst
@@ -39,9 +39,9 @@ Inside the expression, you have access to a number of variables:
 ``user``
     The user object (or the string ``anon`` if you're not authenticated).
 ``roles``
-    The array of roles the user has, including from the
-    :ref:`role hierarchy <security-role-hierarchy>` but not including the
-    ``IS_AUTHENTICATED_*`` attributes (see the functions below).
+    The array of roles the user has. This array includes any roles granted
+    indirectly via the :ref:`role hierarchy <security-role-hierarchy>` but it
+    does not include the ``IS_AUTHENTICATED_*`` attributes (see the functions below).
 ``object``
     The object (if any) that's passed as the second argument to ``isGranted()``.
 ``token``