CB

This is only a problem if the moderator usergroup is not Administrator or Super Administrator. So for example "Manager".

Appears to be due to the ACL function get_users_permission and its below usage.

|| ( $user_id && $userGroups && ( ! array_intersect( $userGroups, $myGidsTree ) ) )

There's no real way to fix this without breaking the usage somewhere else. Getting a list of usergroups below a user isn't easy anymore due to the changes to usergroup usage. It's due to get_groups_below_me only getting the exact groups the user belongs to then comparing.

Now that CB has proper permissions handling perhaps get_user_permission_task and get_users_permission can be upgraded to to check permissions instead of looping through and trying to check parent/child usergroup permission.

get_user_permission_task seams to already use authoriseAction, but only for admins or super admins.