User is a Org admin in org A
User is just a member in org B

Expected
The user should not see org B in the org selector dropdown or have access to any of the settings pages for org B

Actual

1. User can access the Members page even though the members page is not in the sidebar
2. User can access the custom roles page from the sidebar
3. User can access the groups page through the url directly
4. The org is incorrectly displayed in the org selector dropdown

Related to this:
A user that is only a member in any org can still access orgs by going directly to the url /organizations/coder

Expected
Org members should not be able to access any organization settings