Any role that can create users can create Super Admin user

_

_

<@971785568189022329> Hoping you can clarify the following:

In update, the request is as follows:

  request: {
    roles: [ 1 ],
    isActive: false,
    username: null,
    email: '123@mirasaki.dev',
    lastname: '123',
    firstname: '123'
  }

There’s no uid present, if the update request contains a modified email address - the target user (userBeingUpdated) is unresolved. Is there any way we can include logic for this?