A request I have heard from customers before is the ability to allow users, who are not full-administrators on a Windows endpoint, the ability to perform certain actions or open certain applications in an elevated context. Intune has this ability (called endpoint privilege management). For comparison, Dynamic Environment Manager (commonly associated with our Horizon offering) has had this ability for some time, though called Privilege Elevation. Through the integration with DEM and Workspace ONE, we can support privilege elevation on enrolled Windows devices. If you do not have a license for DEM, you can also accomplish a similar process (though this will result in the end user being added or removed from the Administrators group) through the scripts/sensors functionality in Workspace ONE.
Both processes, whether through DEM integration or through sensors/scripts functionality, are outlined in my blog post here: https://www.seinanrv.com/articles/workspace-one-uem/privilege-elevation-for-windows.