Release : 15.x
Component : Policy
This behavior is as designed.
The highest severity identified in the detection rule or the group rule will be taken as the severity of the incident
The only way to achieve the desired result in this case would be through a separate policy