diff --git a/CHANGES b/CHANGES
index 9910fdabda..007e5d2e32 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,8 @@
+5275.	[bug]		Mark DS records included in referral messages
+			with trust level "pending" so that they can be
+			validated and cached immediately, with no need to
+			re-query. [GL #964]
+
 5274.	[bug]		Address potential use after free race when shutting
 			down rpz. [GL #1175]
 
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index cdd45ff338..38b250662e 100644
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -288,6 +288,13 @@
 	  all output on standard output except for the name of the signed zone.
 	</para>
       </listitem>
+      <listitem>
+	<para>
+	  DS records included in DNS referral messages can now be validated
+	  and cached immediately, reducing the number of queries needed for
+	  a DNSSEC validation. [GL #964]
+	</para>
+      </listitem>
     </itemizedlist>
   </section>