Restrict access to analytics objects via role AND scope
When a staff member provides access to an analytics object and adds a role via "add role" there is no option to add a scope to a role. For example when editing an analytics object such as a report and the staff member adds role "physical inventory operator extended" there is no way to see "only if physical inventory operator extended has scope law library". When a staff member is editing an analytics object such as a report and adds a role via "add from profile" Alma will look only at the roles in the profile and not the scope. We need to be able to restrict report access to staff members with particular roles that are from particular libraries. This is especially important in decentralized environments where financial information is not typically shared between libraries.