In the networked environment, because we have multiple users working on multiple sites, individual site administrators have limitations on what they can do with users.
An admin can remove a user entirely from the site in quetion, but they cannot update a user’s profile, nor can they remove from other sites in the network (unless they administer them).
Only the user can update their personal profile. The reason for this is that a lot of security info is associated with those profiles, including the 2 factor authentication.
Commonly you might set up a user as an author, and have an editor approve their drafts and publish them. But lets say the author graduates to being an editor? In a standalone wordpress environment the admin has full rights to update an amend any other user. Not so in a networked enviroment. So in order to upgrade a user to a fresh role, you will need to first remove the user and then add them back with the new role. Only the site admin has these powers.