As a reasonably skilled user, while attempting to sign a CSR, I am to decode an error message using non-obvious terms, and the message text is missing a space or other delimiter

Issue

[description of the issue]
The error #3009 looks to be a concatenation from two sources. The text is:
invalid 'csr': subject alt name type RFC822Name is forbidden for non-user principals

Clear and relatively unambiguous feedback is helpful for all levels of users. Acronyms and jargon tend to isolate experienced users.

Steps to Reproduce

1. Create a CSR for a host including a subject alternate name
2. Attempt to sign the CSR

Actual behavior

Receive the message: 'invalid 'csr': subject alt name type RFC822Name is forbidden for non-user principals' The message appears to be a concatenation of:
invalid 'csr': subject alt name type RFC822
and:
Name is forbidden for non-user principals

It further seems 'name' above refers to 'subject alternate name' (SAN).

Expected behavior

1. The concatenated error string should have a delimiter between the parts to ease readability.
2. The term 'name' is overloaded, and therefore ambiguous. The specific 'name' impeding the process should be unambiguously identified.

Version/Release/Distribution

FreeIPA, version: 4.8.4

Additional info:

Additional context is in this ServerFault question