Currently the only role available is 'Owner' where any shared user is able to do everything.
A role where an IT administrator could update the workflow and not be able to view sensitive data in the run history would be ideal.
never-displayed