Logic to protect inclusion and exclusion groups #14
Description
We might want to protect exclusion groups (at least some) with the "Azure AD roles can be assigned to the group" flag that will protect it from other admin roles.
Thinking about: Sync account group, Emergency access account group and admin CA policies maybe even PERM exclusion groups of other policies.