I set up a fresh Zabbix 7.4.2 installation using the official github compose repo and the documentation on SAML with EntraID. I have not set up SCIM. Everything else, including JIT works.
This is a hybrid synced domain. I have a general question regarding the login flow at this point.

The user goes to the frontend URL and is greeted by the login form. Internal and SSO SAML is both available. When the user clicks "Sign in with SSO" they get the M365 dialogue to "choose an account". There's only one account available, the one of the user currently logged in to the device. This user is using Edge and they're also logged in to Edge with their account. They click their account and now get logged in to Zabbix. The next screen is the dashboard.

So, please educate me on this one. Is it not possible to sort of pass-through account credentials from the logged in user to SAML? The current flow here apparently is: go site > click SSO > click account > get greeted by zabbix
While this is reasonably fine, I wonder whether there's any way to have SAML auto login the user's Windows/Edge profile that called the site? à la: go site > done