In a Nuxeo with various domains, all the sections roots are listed, even if the user doesn't have the Read Permission on the content node.
It is not a real security problem as if let unchanged, what is displayed is " Sections". But it is a problem for usability if there are hundreds of domains.