This bug affects products bundled with specific versions of OpenSSL. We need to include a notice in our documentation stating the version of OpenSSL that is shipped with the Windows Enterprise Build. This can then be referenced to show we are not vulnerable.
I propose adding
To perhaps this section on 2.6 release notes: