That sounds .... like a security vulnerability? You add new employee to the org. You ensure new employee is not in the devops team. You submit event data with confidential data to the devops project. You expect new employee not to be able to read said confidential data but they can actually.
I'm even more confused.
/org-slug/settings/teams/would be the main page for teams and a reasonable place to add text
That could be a link that opens in a new tab