diff --git a/protocol/protocol.tex b/protocol/protocol.tex
index e8360a27..1c12a0e6 100644
--- a/protocol/protocol.tex
+++ b/protocol/protocol.tex
@@ -4249,7 +4249,7 @@ about the \transaction and (where applicable) the specific input, to give a
 authorization differs between
 \sprout{\transparentInputs and inputs to \Sprout \joinSplitTransfers,}
 \notsprout{\transparentInputs, inputs to \Sprout \joinSplitTransfers,\sapling{ and \Sapling \spendTransfers,}}
-but the same \sighashTxHash algorithm is used.
+but (for a given \transactionVersion) the same \sighashTxHash algorithm is used.
 
 In the case of \Zcash, the
 \sprout{$\PHGR$ proving system used is}%
@@ -4275,9 +4275,8 @@ of the \transaction.}
 \changed{In \Zcash, all \sighashTypes are extended to cover the \Zcash-specific
 fields $\nJoinSplit$, $\vJoinSplit$, and if present $\joinSplitPubKey$. These fields
 are described in \crossref{txnencoding}. The hash \emph{does not} cover the field $\joinSplitSig$.}
-\overwinter{
-After \Overwinter\sapling{ and \Sapling} activation, all \sighashTypes are also extended to cover
-\transaction fields introduced in those upgrades.
+\overwinter{After \Overwinter activation, all \sighashTypes are also extended to cover \transaction fields
+introduced in that upgrade\sapling{, and similarly after \Sapling activation}.
 
 The original \sighash algorithm defined by \Bitcoin suffered from some deficiencies as
 described in \cite{ZIP-143}; in \Zcash these are to be addressed by changing this algorithm