Scenario: An active incident exists where a user identity in M365 has been isolated

When accepting the Remediation Plan for this active Incident, it appears that the account is unlocked in Microsoft 365/Microsoft Azure. This could open a brief window to where a threat actor can regain access to the account and continue the attack in question. If this is the intended behavior, can it be modified to where accepting a Remediation Plan doesn't automatically unlock the account?