As I understand, [PROD] tokens can only be added to a task in a non-prod phase if the user is assigned the permission: Can manage production
However, as a non-prod user:
I discovered this is allowable in any task that has an assignable output parameter, such as: Ansible Tower Run Template, Jenkins Build or REST.
Release : SaaS
Component : Continuous Delivery Director