In a non-Dataverse Power Platform environment, we have a setup where:

• A single Azure AD Team is assigned the Environment Maker role.
• No individual roles are assigned—only the Team has permissions.
• The environment is intended to be exclusive to that Team, meaning only its members should be able to create, update, delete, and share apps and flows.

However, when users attempt to share an app or flow, the sharing lookup displays all users in the tenant, including those outside the Team. This creates a risk of unintentional sharing beyond the intended group.

Idea Suggestion: Introduce a feature that allows administrators to restrict the sharing lookup to show only members of the assigned Team or security group, so users can share apps/flows only within their team and cannot view or select users outside of it.

This would greatly enhance governance and security in team-specific environments, especially in non-Dataverse scenarios.