Organizational Policies that stop 'user' from unsyncing SSO or leaving organization

I am reviewing the end user experience prior to rolling licensing to basic end users and onboarding them to the enterprise licensed, single organization. When signed in as the user (master password reset auto-enrolled) I can simply click on t

he organization tab and choose “unlink SSO” or LEAVE.

Thanks for the feedback, it has been passed along to the team. It is worth noting that if an organization is using Directory Connector, it will automatically invite a user back to the organization.