diff --git a/ChangeLog b/ChangeLog
index bdeb8f0a0..5de864154 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -2,12 +2,6 @@ Mbed TLS ChangeLog (Sorted per branch, date)
 
 = Mbed TLS 3.3.0 branch released 2022-12-14
 
-API changes
-   * Add an ad-hoc key derivation function handling EC J-PAKE to PMS
-     calculation that can be used to derive the session secret in TLS 1.2,
-     as described in draft-cragie-tls-ecjpake-01. This can be achieved by
-     using PSA_ALG_TLS12_ECJPAKE_TO_PMS as the key derivation algorithm.
-
 Default behavior changes
    * Previously the macro MBEDTLS_SSL_DTLS_CONNECTION_ID implemented version 05
      of the IETF draft, and was marked experimental and disabled by default.
@@ -103,6 +97,10 @@ Features
      implementations of raw key agreement through the key_agreement driver
      entry point. This entry point is specified in the proposed PSA driver
      interface, but had not yet been implemented.
+   * Add an ad-hoc key derivation function handling EC J-PAKE to PMS
+     calculation that can be used to derive the session secret in TLS 1.2,
+     as described in draft-cragie-tls-ecjpake-01. This can be achieved by
+     using PSA_ALG_TLS12_ECJPAKE_TO_PMS as the key derivation algorithm.
 
 Security
    * Fix potential heap buffer overread and overwrite in DTLS if