Graph User.ReadBasic.All Application Permission Available

Thanks Tony, I came across this recently as we're being asked to modify our multi-tenant service principal to drop User.Read.All in favor of User.ReadBasic.All - however filters on the queries on unsupported properties will be an issue.  Also, having all current clients have to grant consent when app permissions are changed is a challenge.  Are you aware of any work being done on the Microsoft side to allow for adding of permissions on a tenant by tenant basis by client AAD admins?  If Microsoft would allow for a client to add (instead of just remove) permissions in their specific tenant, then we would be able to allow our clients to customize the permissions granted to the service principal if they were ok with the consequences that some queries may not work.