Restricting permissions in Organizational Groups fails to restrict users from editing assets