We recently implemented Jira Service Desk (Cloud) for our internal organization. We have multiple service desk projects, and one of them is trying to utilize the user picker function for staff to select their manager on specific request types.
As per design, this does not work by default for non-Jira system users as the Browse Users global permission is set to allow only specific roles. This permission is required to allow user picker functionality.
Our site is not public. We use Okta SSO in conjunction with Atlassian Access to control who our Service Desk customers are, so the only people getting access to the list of users would be staff members or approved users of Jira, JSD.
Are there any downsides to setting Browse Users to Public, or the group that defines Jira Service Desk customers?