It appears that the update course endpoint is not protected using CASL and that an organization member, with an assigned license, can update the course.