diff --git a/includes/bootstrap.inc b/includes/bootstrap.inc
index 5eaa05e..0ed984c 100644
--- a/includes/bootstrap.inc
+++ b/includes/bootstrap.inc
@@ -1681,6 +1681,13 @@ function watchdog_exception($type, Exception $exception, $message = NULL, $varia
  *   message should be added by using placeholder strings alongside
  *   the variables argument to declare the value of the placeholders.
  *   See t() for documentation on how $message and $variables interact.
+ *   
+ *   SECURITY NOTE: the caller might also set a 'link' in the
+ *   $message string which will be printed as-is by watchdog. 
+ *   Usually this is a "view", "edit" or similar relevant link.
+ *   Make sure to use properly the l() function, with its 
+ *   sanitization features, for secure generation of the link.
+ *   @see l()
  * @param $variables
  *   Array of variables to replace in the message on display or
  *   NULL if message is already translated or not possible to