diff --git a/docs/source/reference/services.md b/docs/source/reference/services.md
index 7de3a7ea..5fed9896 100644
--- a/docs/source/reference/services.md
+++ b/docs/source/reference/services.md
@@ -297,7 +297,7 @@ You will only get to this stage if the user has the required `access:services!se
 To retrieve the user model for the token, make a request to `GET /hub/api/user` with the token in the Authorization header.
 For example, using flask:
 
-```{literal-include} ../../../examples/service-whoami-flask/whoami-flask.py
+```{literalinclude} ../../../examples/service-whoami-flask/whoami-flask.py
 :language: python
 ```
 
diff --git a/jupyterhub/services/auth.py b/jupyterhub/services/auth.py
index d95775c1..ebe47edd 100644
--- a/jupyterhub/services/auth.py
+++ b/jupyterhub/services/auth.py
@@ -836,8 +836,8 @@ class HubAuthenticated:
       Default values include:
       - 'access:services', 'access:services!service={service_name}' for services
       - 'access:servers', 'access:servers!user={user}',
-        'access:servers!server={user}/{server_name}'
-        for single-user servers
+      'access:servers!server={user}/{server_name}'
+      for single-user servers
 
     If hub_scopes is not used (e.g. JupyterHub 1.x),
     these additional properties can be used: