diff --git a/doc/src/sgml/logical-replication.sgml b/doc/src/sgml/logical-replication.sgml
index 145ea71d61b..2fcaa9d261a 100644
--- a/doc/src/sgml/logical-replication.sgml
+++ b/doc/src/sgml/logical-replication.sgml
@@ -1171,6 +1171,17 @@ CONTEXT: processing remote data for replication origin "pg_16395" during "INSER
schema automatically, the user must be a superuser.
+
+ Note that there are currently no privileges on publication, and that any
+ subscriber can access any publication. Thus if you're trying to hide some
+ information from particular subscribers (by using the
+ WHERE clause or the column list, or by not adding the
+ whole table to the publication), please be aware that other publications
+ can expose the same information. Publication privileges might be added
+ to PostgreSQL in the future to allow for
+ fine-grained access control.
+
+
To create a subscription, the user must be a superuser.