"Do not connect to any Windows Update Internet locations", but allow Windows Store access

I hope this is the right place to ask this question - 

Question #1:  In a scenario where Windows updates are managed on-premise via WSUS, is there an alternative combination of group policies that could be applied to provide the security that "Do not connect to any Windows Update Internet locations" provides, without breaking updates to Windows Store apps that have been deployed by SCCM?  I'm looking for a solution to keep store apps updated automatically, while continuing to manage Windows updates via WSUS.  Keeping apps updated manually because they can't update from the store is not scalable with this GPO enabled is not scalable in an enterprise.

Question #2:  When updates are configured to come from WSUS, if "Do not connect to any Windows Update Internet locations" is enabled, does it actually prevent download and install of updates from Windows Update?  The description of this GPO only states the following: "Even when Windows Update is configured to receive updates from an intranet update service, it will periodically retrieve information from the public Windows Update service to enable future connections to Windows Update, and other services like Microsoft Update or the Microsoft Store. <snip> When enabled, this policy will disable the functionality described above, and may cause connection to public services such as the Microsoft Store, Windows Update for Business and Delivery Optimization to stop working."  

Thanks.