Non Adminstrator Users able to change their own role to Administrator

### Describe the Bug

After login with non-admin-role user, I request patch to /users/:id?access_token={jwt} with { role:1, first_name:'Ronda'}
and the result is user's role changed to admin-role. Even if in permission of directus_users, this field is not writable.
<img width="132" alt="image" src="https://user-images.githubusercontent.com/103013882/174084130-06772136-04ba-48bd-b18d-9e7c99fd538e.png">



### To Reproduce

Create Reguler User Role (ex. Content Writer) with no app and admin access.
Login with axios, use jwt and send patch to /users/:id?access_token={jwt} with value {role:1} 

### Errors Shown

_No response_

### What version of Directus are you using?

8.8.1

### What version of Node.js are you using?

-

### What database are you using?

MySql

### What browser are you using?

Chrome

### How are you deploying Directus?

DigitalOcean Image

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Non Adminstrator Users able to change their own role to Administrator #2511

Describe the Bug

To Reproduce

Errors Shown

What version of Directus are you using?

What version of Node.js are you using?

What database are you using?

What browser are you using?

How are you deploying Directus?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Non Adminstrator Users able to change their own role to Administrator #2511

Description

Describe the Bug

To Reproduce

Errors Shown

What version of Directus are you using?

What version of Node.js are you using?

What database are you using?

What browser are you using?

How are you deploying Directus?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions