Giving a role permission to add new members and edit roles needs to be carefully considered. Only give a role this permission if the role is trusted with sharing and managing Personal Health Information.
"ViewRole Settings" allows the role to view the permissions associated with all roles. "Edit Role Settings" allow a role to add, remove, rename and set up permissions for all roles.
If a role has permission to View Members, they can see the names and roles of all staff and users who are in your organization. If they can manage members, they can invite outside individuals to your organization, remove members and assign members roles, learners, and libraries.
It's recommended that only the Owner or a very high and trusted "Organization Admin" has these permissions.