diff --git a/content/release_notes/inspec.md b/content/release_notes/inspec.md
index 40b1019e1..dbf1a4a41 100644
--- a/content/release_notes/inspec.md
+++ b/content/release_notes/inspec.md
@@ -393,6 +393,34 @@ We overhauled the `inspec check` and `inspec export` commands to use the parser
 
 - We no longer support Ruby 2.7 since it became end-of-life (EOL) in March 2023.
 
+## Chef InSpec 5.24.20
+
+Release date: June 21, 2026
+
+### Improvements
+
+- **Omnibus build configuration**: Moves the omnibus build configuration to a private Git submodule, improving separation of concerns and enabling better control over official release builds.
+Community contributors can continue building InSpec packages using the public [`inspec-omnibus-community-config`](https://github.com/chef/inspec-omnibus-community-config) repository. ([#7827](https://github.com/inspec/inspec/pull/7827))
+
+### Bug fixes
+
+- Fixed an issue where controls waived with `run: false` still executed the entire control block before skipping, causing expensive commands to run unnecessarily.
+InSpec now pre-checks waivers before evaluating the control block, so waived controls skip execution entirely. ([#7832](https://github.com/inspec/inspec/pull/7832))
+- Fixed an issue where the `package` resource failed to detect 32-bit packages when running InSpec against Windows Server 2025 through a WinRM session (for example, with Test Kitchen).
+PowerShell WinRM sessions don't expand CMD-style environment variables, which caused architecture detection to return an unknown value and `WOW6432Node` registry paths to be skipped, making 32-bit packages appear as not installed.
+Train now falls back to PowerShell-native syntax for architecture detection when CMD variable expansion fails. ([#7935](https://github.com/inspec/inspec/pull/7935), train [#832](https://github.com/inspec/train/pull/832))
+
+#### Security fixes
+
+- Updated `addressable` gem constraint from `< 2.8.8` to `~> 2.9`. ([#7920](https://github.com/inspec/inspec/pull/7920))
+- Updated `json` gem from `>= 1.8` to `>= 2.19.2`. (train [#829](https://github.com/inspec/train/pull/829))
+- Updated `activesupport` gem from `>= 7.2.2.1` to `>= 7.2.3.1`. (train [#830](https://github.com/inspec/train/pull/830))
+- Updated `net-imap` gem from `>= 0.2.5` to `>= 0.5.14`. ([#7924](https://github.com/inspec/inspec/pull/7924))
+- Updated `jwt` gem from `2.10.2` to `2.10.3`. ([#7925](https://github.com/inspec/inspec/pull/7925))
+- Updated `faraday` gem from `1.10.4` to `1.10.5`. ([#7925](https://github.com/inspec/inspec/pull/7925))
+- Pinned `bigdecimal` to `< 4` in Train to prevent install failures on el-7 platforms (RHEL 7, CentOS 7). (train [#833](https://github.com/inspec/train/pull/833))
+- Updated `nokogiri` test dependency gem from `1.17.1` to `1.18.10`. ([#7946](https://github.com/inspec/inspec/pull/7946))
+
 ## Chef InSpec 5.24.7
 
 Release date: March 2, 2026