Docker container (Apps user) permissions on ElectricEel-24.10.2

Good afternoon everyone!

I am new to Truenas and someone can explain: by default docker containers (applications) are started by the root user, is this correct? If I understand correctly, it is good practice that containers should still be started by a non-root user. From a security perspective, how necessary is it to move containers to the non-root user? And if so, how can this be done?
From the Truenas documentation: “Some applications deploy as the root user for initial configuration before running as a non-root user. Keep these general best practices in mind when using applications with TrueNAS”.
Do the permissions on the dataset affect the user running the container?

And also the large number of apps from the store, judging by Run As Context, most apps require root user and group.

I apologize if this is a repeat, I couldn’t find anything on these questions in the search. Thanks in advance!