We want to give flexibility to Project admin so that they can assign roles to users with their projects.
Now as they have rights to add groups so they can add default group like jira_users OR confluence_users and by this all users get access to projects.
Now may be at the time of adding these group, there is no sensitive information in project, but after some time there is some sensitive information available.
So security team in our company raised this concern of access to all feature. As a security measure we want this group access permission should not be available to Project admins, Only System admin can have that access in both products i.e. in JIRA and Confluence.