Users are granted product access when they are assigned to a group. When a role is removed from a group, the Audit Logs doesn't record that all the users assigned to that group lost their access to the product.

Only the entry indicating that the role was removed from the group is shown. 

This is misleading for Organization admins when they search the audit log to find out why the user lost access to the product.