segregate the right for user and role editing
Currently, the rights are grouped in one permission (Admininistration> Administration of Users, Groups and Roles). In the future it should be possible to allocate these separately.
This is really important. In our company, one person should be allowed to manage the users but not the roles and rights. Those are two very different aspects!