Dear Bitbucket team,
Feature / Enhancement request: Please add a step to verify identity before automatically associating the last/currently logged in user with an invitation for a new team or a new repository.
Motiviation: Many users accept invitations received by email without noticing that they are already logged into bitbucket with a different username. Typically, they have an active login in some other tab in their browser. This is a very easy to make mistake, and the consequence is that the associations become incorret.
When used for private/confidential information, the current behavior is more or less a show stopper.
Best regards Viktor