Comment 9 for bug 1713783

I'm really not clear why this is a security issue.

We're talking about evacuation, which is an admin action.

And the potential issue is the delete of a guest incorrectly.

Regular users can't trigger this (unless the admin gave them pretty broad privs, which have way other security issues). They aren't getting access to sensitive information. The worst case is a loss of information. Which in a cloud environment is not super unexpected.