[Email Security] Add ZT note

Maddy-Cloudflare · Maddy-Cloudflare · commit 0ec307e576bc · 2025-02-03T14:22:47.000Z
diff --git a/src/content/docs/cloudflare-one/roles-permissions.mdx b/src/content/docs/cloudflare-one/roles-permissions.mdx
@@ -22,6 +22,10 @@ Only Super Administrators will be able to assign or remove the following roles f
 | Cloudflare Zero Trust Read Only | ✅          | ❌          | ✅           | ❌           | ✅             | ✅           | ❌           |
 | Cloudflare Zero Trust Reporting | ❌          | ❌          | ❌           | ❌           | ✅             | ✅           | ❌           |
 
+:::note
+The Cloudflare Zero Trust role grants administrator access to all Zero Trust products including Access, Gateway, WARP, Tunnel, Browser Isolation, CASB, DLP, DEX, and Email Security.
+:::
+
 ### Cloudflare Zero Trust PII
 
 By default, only Super Administrators can view end users' PII in the Gateway activity logs, such as Device IDs, Source IPs, or user emails. No other roles will have the ability to read PII unless Super Administrators explicitly assign the **Cloudflare Zero Trust PII** role to them.
