diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml
index 3e2ae93bf0..4818f3423c 100644
--- a/man/systemd.exec.xml
+++ b/man/systemd.exec.xml
@@ -891,10 +891,11 @@ CapabilityBoundingSet=~CAP_B CAP_C
ProtectSystem=
Takes a boolean argument or the special values full or
- strict. If true, mounts the /usr and /boot
- directories read-only for processes invoked by this unit. If set to full, the
- /etc directory is mounted read-only, too. If set to strict the entire
- file system hierarchy is mounted read-only, except for the API file system subtrees /dev,
+ strict. If true, mounts the /usr and the boot loader
+ directories (/boot and /efi) read-only for processes
+ invoked by this unit. If set to full, the /etc directory is
+ mounted read-only, too. If set to strict the entire file system hierarchy is
+ mounted read-only, except for the API file system subtrees /dev,
/proc and /sys (protect these directories using
PrivateDevices=, ProtectKernelTunables=,
ProtectControlGroups=). This setting ensures that any modification of the vendor-supplied