Clarify that redaction events are subject to auth rules

content/rooms/fragments/v8-auth-rules.md

@@ -1,11 +1,9 @@
 
 Events must be signed by the server denoted by the `sender` property.
 
-`m.room.redaction` events are not explicitly part of the auth rules.
+While they are still subject to them, there are no auth rules specifically for
-They are still subject to the minimum power level rules, but should always
+`m.room.redaction` events. The actual redaction of content is authorized at a
-fall into "10. Otherwise, allow". Instead of being authorized at the time
+later stage: see the [Redactions](#redactions) section below for more information.
-of receipt, they are authorized at a later stage: see the
-[Redactions](#redactions) section below for more information.
 
 The types of state events that affect authorization are:
 

content/rooms/v10.md

@@ -76,11 +76,9 @@ correctly structured are rejected under the authorization rules below.
 
 Events must be signed by the server denoted by the `sender` property.
 
-`m.room.redaction` events are not explicitly part of the auth rules.
+While they are still subject to them, there are no auth rules specifically for
-They are still subject to the minimum power level rules, but should always
+`m.room.redaction` events. The actual redaction of content is authorized at a
-fall into "10. Otherwise, allow". Instead of being authorized at the time
+later stage: see the [Redactions](#redactions) section below for more information.
-of receipt, they are authorized at a later stage: see the
-[Redactions](#redactions) section below for more information.
 
 The types of state events that affect authorization are:
 

content/rooms/v11.md

@@ -83,11 +83,9 @@ such events over the Client-Server API.
 
 Events must be signed by the server denoted by the `sender` property.
 
-`m.room.redaction` events are not explicitly part of the auth rules.
+While they are still subject to them, there are no auth rules specifically for
-They are still subject to the minimum power level rules, but should always
+`m.room.redaction` events. The actual redaction of content is authorized at a
-fall into "10. Otherwise, allow". Instead of being authorized at the time
+later stage: see the [Redactions](#redactions) section below for more information.
-of receipt, they are authorized at a later stage: see the
-[Redactions](#redactions) section below for more information.
 
 The types of state events that affect authorization are:
 

content/rooms/v3.md

@@ -89,12 +89,10 @@ The complete structure of a event in a v3 room is shown below.
 
 ### Authorization rules
 
-{{< added-in this=true >}} `m.room.redaction` events are no longer
+{{< added-in this=true >}} While they are still subject to them,
-explicitly part of the auth rules. They are still subject to the
+there are no auth rules specifically for `m.room.redaction` events anymore.
-minimum power level rules, but should always fall into "11. Otherwise,
+The actual redaction of content is authorized at alater stage: see the
-allow". Instead of being authorized at the time of receipt, they are
+[Redactions](#redactions) section below for more information.
-authorized at a later stage: see the [Handling Redactions](#handling-redactions)
-section below for more information.
 
 <!-- set withVersioning=true so we get all the "new in this version" stuff -->
 {{< rver-fragment name="v3-auth-rules" withVersioning=true >}}

content/rooms/v6.md

@@ -40,11 +40,9 @@ in [room version 5](/rooms/v5).
 
 ### Authorization rules
 
-`m.room.redaction` events are not explicitly part of the auth rules.
+While they are still subject to them, there are no auth rules specifically for
-They are still subject to the minimum power level rules, but should always
+`m.room.redaction` events. The actual redaction of content is authorized at a
-fall into "10. Otherwise, allow". Instead of being authorized at the time
+later stage: see the [Redactions](#redactions) section below for more information.
-of receipt, they are authorized at a later stage: see the
-[Handling Redactions](#handling-redactions) section below for more information.
 
 {{< added-in this=true >}} Rule 4, which related specifically to events
 of type `m.room.aliases`, is removed. `m.room.aliases` events must still pass

content/rooms/v7.md

@@ -37,11 +37,9 @@ new point for `membership=knock` is added.
 
 Events must be signed by the server denoted by the `sender` property.
 
-`m.room.redaction` events are not explicitly part of the auth rules.
+While they are still subject to them, there are no auth rules specifically for
-They are still subject to the minimum power level rules, but should always
+`m.room.redaction` events. The actual redaction of content is authorized at a
-fall into "10. Otherwise, allow". Instead of being authorized at the time
+later stage: see the [Redactions](#redactions) section below for more information.
-of receipt, they are authorized at a later stage: see the
-[Redactions](#redactions) section below for more information.
 
 The types of state events that affect authorization are: