diff --git a/app/_hub/kong-inc/injection-protection/overview/_index.md b/app/_hub/kong-inc/injection-protection/overview/_index.md
index 951f86096c5..cb83870a69f 100644
--- a/app/_hub/kong-inc/injection-protection/overview/_index.md
+++ b/app/_hub/kong-inc/injection-protection/overview/_index.md
@@ -81,12 +81,16 @@ Logs are automatically collected when you enable the Injection Protection plugin
     * [UDP Log](/hub/kong-inc/udp-log/)
 * [{{site.konnect_short_name}} Advanced Analytics](/konnect/analytics/) <!--though i'm not sure if they will do anything with them yet--> 
 
-The following is an example of the information that is logged by the Injection Protection plugin:
+Here's a sample log entry created by the Injection Protection plugin. 
 
 ```
 threat detected: 'sql', action taken: log_only, found in path_and_query, query param value: foo: insert into test
 ```
-
+Where:
+* The plugin detected a SQL injection threat
+* It created a log entry but took no other actions
+* The threat was found in the request path or query
+* The inserted snippet is `foo: insert into test`
 
 ## Get started with the Injection Protection plugin
 * [Configuration reference](/hub/kong-inc/injection-protection/configuration/)