Add the ability to deny permission inheritance for session groups

Would like to have the ability to set up 'limited administrator' accounts for employees who need to be able to maintain most aspects of Control, but prevent them from seeing/using specific session groups. As far as I can see, this would only be possible if there was an option to deny permission inheritance on a session group from the parent level. Seems like a valuable enhancement to me!