diff --git a/web-admin/src/features/organizations/users/AddUsersDialog.svelte b/web-admin/src/features/organizations/users/AddUsersDialog.svelte
index 966db5e7c5d..13576e5a897 100644
--- a/web-admin/src/features/organizations/users/AddUsersDialog.svelte
+++ b/web-admin/src/features/organizations/users/AddUsersDialog.svelte
@@ -40,32 +40,27 @@
     newRole: string,
     isSuperUser: boolean = false,
   ) {
-    try {
-      await $addOrganizationMemberUser.mutateAsync({
-        organization: organization,
-        data: {
-          email: newEmail,
-          role: newRole,
-          superuserForceAccess: isSuperUser,
-        },
-      });
-
-      await queryClient.invalidateQueries({
-        queryKey:
-          getAdminServiceListOrganizationMemberUsersQueryKey(organization),
-      });
-
-      await queryClient.invalidateQueries({
-        queryKey: getAdminServiceListOrganizationInvitesQueryKey(organization),
-      });
+    await $addOrganizationMemberUser.mutateAsync({
+      organization: organization,
+      data: {
+        email: newEmail,
+        role: newRole,
+        superuserForceAccess: isSuperUser,
+      },
+    });
 
-      email = "";
-      role = "";
-      isSuperUser = false;
-    } catch (error) {
-      console.error("Error adding user to organization", error);
-      throw error;
-    }
+    await queryClient.invalidateQueries({
+      queryKey:
+        getAdminServiceListOrganizationMemberUsersQueryKey(organization),
+    });
+
+    await queryClient.invalidateQueries({
+      queryKey: getAdminServiceListOrganizationInvitesQueryKey(organization),
+    });
+
+    email = "";
+    role = "";
+    isSuperUser = false;
   }
 
   const formId = "add-user-form";
@@ -139,12 +134,6 @@
         // Show error notification if any invites failed
         if (failed.length > 0) {
           failedInvites = failed; // Store failed emails
-          eventBus.emit("notification", {
-            type: "error",
-            message: `Failed to invite ${failed.length} ${
-              failed.length === 1 ? "person" : "people"
-            }`,
-          });
         }
 
         // Close dialog after showing notifications
@@ -220,7 +209,9 @@
       </MultiInput>
       {#if failedInvites.length > 0}
         <div class="text-sm text-red-500 py-2">
-          Failed to invite {failedInvites.join(", ")}
+          {failedInvites.length === 1
+            ? `${failedInvites[0]} is already a member of this organization`
+            : `${failedInvites.join(", ")} are already members of this organization`}
         </div>
       {/if}
     </form>
diff --git a/web-admin/src/features/organizations/users/AvatarListItem.svelte b/web-admin/src/features/organizations/users/AvatarListItem.svelte
index e6edea809f9..7dff94bf201 100644
--- a/web-admin/src/features/organizations/users/AvatarListItem.svelte
+++ b/web-admin/src/features/organizations/users/AvatarListItem.svelte
@@ -1,5 +1,6 @@
 <script lang="ts">
   import Avatar from "@rilldata/web-common/components/avatar/Avatar.svelte";
+  import Chip from "@rilldata/web-common/components/chip/core/Chip.svelte";
   import { getRandomBgColor } from "@rilldata/web-common/features/themes/color-config";
   import { cn } from "@rilldata/web-common/lib/shadcn";
 
@@ -10,6 +11,7 @@
   export let pendingAcceptance: boolean = false;
   export let shape: "circle" | "square" = "circle";
   export let count: number = 0;
+  export let role: string | null = null;
 
   function getInitials(name: string) {
     return name.charAt(0).toUpperCase();
@@ -35,11 +37,16 @@
     </div>
   {/if}
   <div class="flex flex-col text-left">
-    <span class="text-sm font-medium text-gray-900">
+    <span class="text-sm font-medium text-gray-900 flex flex-row gap-x-1">
       {name}
       <span class="text-gray-500 font-normal">
         {isCurrentUser ? "(You)" : ""}
       </span>
+      {#if role === "guest"}
+        <Chip type="amber" label="Guest" compact readOnly>
+          <svelte:fragment slot="body">Guest</svelte:fragment>
+        </Chip>
+      {/if}
     </span>
     {#if pendingAcceptance || email}
       <span class="text-xs text-gray-500">
diff --git a/web-admin/src/features/organizations/users/OrgUpgradeGuestConfirmDialog.svelte b/web-admin/src/features/organizations/users/OrgUpgradeGuestConfirmDialog.svelte
new file mode 100644
index 00000000000..544fa8e3753
--- /dev/null
+++ b/web-admin/src/features/organizations/users/OrgUpgradeGuestConfirmDialog.svelte
@@ -0,0 +1,53 @@
+<script lang="ts">
+  import {
+    AlertDialog,
+    AlertDialogContent,
+    AlertDialogDescription,
+    AlertDialogFooter,
+    AlertDialogHeader,
+    AlertDialogTitle,
+    AlertDialogTrigger,
+  } from "@rilldata/web-common/components/alert-dialog/index.js";
+  import Button from "@rilldata/web-common/components/button/Button.svelte";
+
+  export let open = false;
+  export let email: string;
+  export let newRole: string;
+  export let onUpgrade: (email: string, role: string) => void;
+
+  async function handleUpgrade() {
+    try {
+      onUpgrade(email, newRole);
+      open = false;
+    } catch (error) {
+      console.error("Failed to upgrade user role:", error);
+    }
+  }
+</script>
+
+<AlertDialog bind:open>
+  <AlertDialogTrigger asChild>
+    <div class="hidden"></div>
+  </AlertDialogTrigger>
+  <AlertDialogContent>
+    <AlertDialogHeader>
+      <AlertDialogTitle>Upgrade guest to {newRole}?</AlertDialogTitle>
+      <AlertDialogDescription>
+        <div class="mt-1">
+          Upgrading a guest to {newRole} will grant this user access to all open
+          projects in the organization. Would you like to upgrade this guest user
+          to {newRole}?
+        </div>
+      </AlertDialogDescription>
+    </AlertDialogHeader>
+    <AlertDialogFooter>
+      <Button
+        type="plain"
+        on:click={() => {
+          open = false;
+        }}>Cancel</Button
+      >
+      <Button type="primary" on:click={handleUpgrade}>Yes, upgrade</Button>
+    </AlertDialogFooter>
+  </AlertDialogContent>
+</AlertDialog>
diff --git a/web-admin/src/features/organizations/users/OrgUsersFilters.svelte b/web-admin/src/features/organizations/users/OrgUsersFilters.svelte
new file mode 100644
index 00000000000..5186277ac69
--- /dev/null
+++ b/web-admin/src/features/organizations/users/OrgUsersFilters.svelte
@@ -0,0 +1,64 @@
+<script lang="ts">
+  import * as DropdownMenu from "@rilldata/web-common/components/dropdown-menu";
+  import CaretUpIcon from "@rilldata/web-common/components/icons/CaretUpIcon.svelte";
+  import CaretDownIcon from "@rilldata/web-common/components/icons/CaretDownIcon.svelte";
+
+  export let filterSelection: "all" | "members" | "guests" | "pending" = "all";
+
+  let isDropdownOpen = false;
+</script>
+
+<DropdownMenu.Root bind:open={isDropdownOpen}>
+  <DropdownMenu.Trigger
+    class="min-w-[210px] flex flex-row justify-between gap-1 items-center rounded-sm border border-gray-300 {isDropdownOpen
+      ? 'bg-slate-200'
+      : 'hover:bg-slate-100'} px-2 py-1"
+  >
+    <span class="capitalize"
+      >{filterSelection === "all" ? "All users" : filterSelection}</span
+    >
+    {#if isDropdownOpen}
+      <CaretUpIcon size="12px" />
+    {:else}
+      <CaretDownIcon size="12px" />
+    {/if}
+  </DropdownMenu.Trigger>
+  <DropdownMenu.Content align="start" class="w-[210px]">
+    <DropdownMenu.CheckboxItem
+      class="font-normal flex items-center"
+      checked={filterSelection === "all"}
+      on:click={() => {
+        filterSelection = "all";
+      }}
+    >
+      <span>All users</span>
+    </DropdownMenu.CheckboxItem>
+    <DropdownMenu.CheckboxItem
+      class="font-normal flex items-center"
+      checked={filterSelection === "members"}
+      on:click={() => {
+        filterSelection = "members";
+      }}
+    >
+      <span>Members</span>
+    </DropdownMenu.CheckboxItem>
+    <DropdownMenu.CheckboxItem
+      class="font-normal flex items-center"
+      checked={filterSelection === "guests"}
+      on:click={() => {
+        filterSelection = "guests";
+      }}
+    >
+      <span>Guests</span>
+    </DropdownMenu.CheckboxItem>
+    <DropdownMenu.CheckboxItem
+      class="font-normal flex items-center"
+      checked={filterSelection === "pending"}
+      on:click={() => {
+        filterSelection = "pending";
+      }}
+    >
+      <span>Pending invites</span>
+    </DropdownMenu.CheckboxItem>
+  </DropdownMenu.Content>
+</DropdownMenu.Root>
diff --git a/web-admin/src/features/organizations/users/OrgUsersTable.svelte b/web-admin/src/features/organizations/users/OrgUsersTable.svelte
index dfeba0a7a30..18c4aae7ddf 100644
--- a/web-admin/src/features/organizations/users/OrgUsersTable.svelte
+++ b/web-admin/src/features/organizations/users/OrgUsersTable.svelte
@@ -28,6 +28,7 @@
     InfiniteData,
     InfiniteQueryObserverResult,
   } from "@tanstack/svelte-query";
+  import { ExternalLinkIcon } from "lucide-svelte";
 
   interface OrgUser extends V1OrganizationMemberUser, V1UserInvite {
     invitedBy?: string;
@@ -43,6 +44,7 @@
     RpcStatus
   >;
   export let currentUserEmail: string;
+  export let currentUserRole: string;
 
   const ROW_HEIGHT = 69;
   const OVERSCAN = 5;
@@ -72,6 +74,7 @@
           pendingAcceptance: Boolean(row.original.invitedBy),
           isCurrentUser: row.original.userEmail === currentUserEmail,
           photoUrl: row.original.userPhotoUrl,
+          role: row.original.roleName,
         }),
       meta: {
         widthPercent: 5,
@@ -79,12 +82,13 @@
     },
     {
       accessorKey: "roleName",
-      header: "Role",
+      header: "Organization Role",
       cell: ({ row }) =>
         flexRender(OrgUsersTableRoleCell, {
           email: row.original.userEmail,
           role: row.original.roleName,
           isCurrentUser: row.original.userEmail === currentUserEmail,
+          currentUserRole: currentUserRole,
         }),
       meta: {
         widthPercent: 5,
@@ -98,7 +102,9 @@
       cell: ({ row }) =>
         flexRender(OrgUsersTableActionsCell, {
           email: row.original.userEmail,
+          role: row.original.roleName,
           isCurrentUser: row.original.userEmail === currentUserEmail,
+          currentUserRole: currentUserRole,
         }),
       meta: {
         widthPercent: 0,
@@ -205,6 +211,20 @@
                         header.getContext(),
                       )}
                     />
+                    {#if header.column.id === "roleName"}
+                      <a
+                        href="https://docs.rilldata.com/manage/roles-permissions#organization-level-permissions"
+                        target="_blank"
+                        rel="noopener noreferrer"
+                        class="hover:text-gray-700"
+                      >
+                        <ExternalLinkIcon
+                          class="text-gray-500"
+                          size="11px"
+                          strokeWidth={2}
+                        />
+                      </a>
+                    {/if}
                     {#if header.column.getIsSorted().toString() === "asc"}
                       <span>
                         <ArrowDown flip size="12px" />
diff --git a/web-admin/src/features/organizations/users/OrgUsersTableActionsCell.svelte b/web-admin/src/features/organizations/users/OrgUsersTableActionsCell.svelte
index b94cfe06927..7f79f9c3135 100644
--- a/web-admin/src/features/organizations/users/OrgUsersTableActionsCell.svelte
+++ b/web-admin/src/features/organizations/users/OrgUsersTableActionsCell.svelte
@@ -15,12 +15,21 @@
   import { page } from "$app/stores";
 
   export let email: string;
+  export let role: string;
   export let isCurrentUser: boolean;
+  export let currentUserRole: string;
 
   let isDropdownOpen = false;
   let isRemoveConfirmOpen = false;
 
   $: organization = $page.params.organization;
+  $: isAdmin = currentUserRole === "admin";
+  $: isEditor = currentUserRole === "editor";
+  $: canManageUser =
+    !isCurrentUser &&
+    (isAdmin ||
+      (isEditor &&
+        (role === "editor" || role === "viewer" || role === "guest")));
 
   const queryClient = useQueryClient();
   const removeOrganizationMemberUser =
@@ -81,7 +90,7 @@
   }
 </script>
 
-{#if !isCurrentUser}
+{#if canManageUser}
   <DropdownMenu.Root bind:open={isDropdownOpen}>
     <DropdownMenu.Trigger class="flex-none">
       <IconButton rounded active={isDropdownOpen}>
diff --git a/web-admin/src/features/organizations/users/OrgUsersTableRoleCell.svelte b/web-admin/src/features/organizations/users/OrgUsersTableRoleCell.svelte
index 0cf7dfbee9b..0fffb08f591 100644
--- a/web-admin/src/features/organizations/users/OrgUsersTableRoleCell.svelte
+++ b/web-admin/src/features/organizations/users/OrgUsersTableRoleCell.svelte
@@ -10,14 +10,33 @@
   import { page } from "$app/stores";
   import { useQueryClient } from "@tanstack/svelte-query";
   import { eventBus } from "@rilldata/web-common/lib/event-bus/event-bus";
+  import OrgUpgradeGuestConfirmDialog from "./OrgUpgradeGuestConfirmDialog.svelte";
 
   export let email: string;
   export let role: string;
   export let isCurrentUser: boolean;
+  export let currentUserRole: string;
 
   let isDropdownOpen = false;
+  let isUpgradeConfirmOpen = false;
+  let newRole = "";
 
   $: organization = $page.params.organization;
+  $: isAdmin = currentUserRole === "admin";
+  $: isEditor = currentUserRole === "editor";
+  $: isGuest = role === "guest";
+  $: canManageUser =
+    !isCurrentUser &&
+    (isAdmin ||
+      (isEditor &&
+        (role === "editor" || role === "viewer" || role === "guest")));
+
+  const OPTION_DESCRIPTION_MAP = {
+    admin: "Full access to org settings, members, and all projects",
+    editor: "Can create/manage projects and non-admin members",
+    viewer: "Read-only access to all org projects",
+    guest: "Access to invited projects only",
+  };
 
   const queryClient = useQueryClient();
   const setOrganizationMemberUserRole =
@@ -25,6 +44,12 @@
 
   async function handleSetRole(role: string) {
     try {
+      if (isGuest) {
+        newRole = role;
+        isUpgradeConfirmOpen = true;
+        return;
+      }
+
       await $setOrganizationMemberUserRole.mutateAsync({
         organization: organization,
         email: email,
@@ -53,63 +78,125 @@
       });
     }
   }
+
+  async function handleUpgrade(email: string, role: string) {
+    try {
+      await $setOrganizationMemberUserRole.mutateAsync({
+        organization: organization,
+        email: email,
+        data: {
+          role: role,
+        },
+      });
+
+      await queryClient.invalidateQueries({
+        queryKey:
+          getAdminServiceListOrganizationMemberUsersQueryKey(organization),
+      });
+
+      await queryClient.invalidateQueries({
+        queryKey: getAdminServiceListOrganizationInvitesQueryKey(organization),
+      });
+
+      eventBus.emit("notification", {
+        message: `Guest upgraded to ${role}`,
+      });
+    } catch (error) {
+      console.error("Error upgrading user role", error);
+      eventBus.emit("notification", {
+        message: "Error upgrading user role",
+        type: "error",
+      });
+    }
+  }
 </script>
 
-{#if !isCurrentUser}
+{#if canManageUser}
   <DropdownMenu.Root bind:open={isDropdownOpen}>
     <DropdownMenu.Trigger
       class="w-18 flex flex-row gap-1 items-center rounded-sm {isDropdownOpen
         ? 'bg-slate-200'
         : 'hover:bg-slate-100'} px-2 py-1"
     >
-      {role ? `Org ${role}` : "-"}
+      <span class="capitalize">{role ? `${role}` : "-"}</span>
       {#if isDropdownOpen}
         <CaretUpIcon size="12px" />
       {:else}
         <CaretDownIcon size="12px" />
       {/if}
     </DropdownMenu.Trigger>
-    <DropdownMenu.Content align="start">
-      <DropdownMenu.CheckboxItem
-        class="font-normal flex items-center"
-        checked={role === "admin"}
-        on:click={() => {
-          handleSetRole("admin");
-        }}
-      >
-        <span>Admin</span>
-      </DropdownMenu.CheckboxItem>
-      <DropdownMenu.CheckboxItem
-        class="font-normal flex items-center"
-        checked={role === "editor"}
+    <DropdownMenu.Content align="start" class="w-[200px]">
+      {#if isAdmin}
+        <DropdownMenu.Item
+          class="font-normal flex flex-col items-start hover:bg-slate-50 {role ===
+          'admin'
+            ? 'bg-slate-100'
+            : ''}"
+          on:click={() => {
+            handleSetRole("admin");
+          }}
+        >
+          <span class="text-xs font-medium text-slate-700">Admin</span>
+          <span class="text-[11px] text-slate-500"
+            >{OPTION_DESCRIPTION_MAP.admin}</span
+          >
+        </DropdownMenu.Item>
+      {/if}
+      <DropdownMenu.Item
+        class="font-normal flex flex-col items-start hover:bg-slate-50 {role ===
+        'editor'
+          ? 'bg-slate-100'
+          : ''}"
         on:click={() => {
           handleSetRole("editor");
         }}
       >
-        <span>Editor</span>
-      </DropdownMenu.CheckboxItem>
-      <DropdownMenu.CheckboxItem
-        class="font-normal flex items-center"
-        checked={role === "viewer"}
+        <span class="text-xs font-medium text-slate-700">Editor</span>
+        <span class="text-[11px] text-slate-500"
+          >{OPTION_DESCRIPTION_MAP.editor}</span
+        >
+      </DropdownMenu.Item>
+      <DropdownMenu.Item
+        class="font-normal flex flex-col items-start hover:bg-slate-50 {role ===
+        'viewer'
+          ? 'bg-slate-100'
+          : ''}"
         on:click={() => {
           handleSetRole("viewer");
         }}
       >
-        <span>Viewer</span>
-      </DropdownMenu.CheckboxItem>
-      <DropdownMenu.CheckboxItem
-        class="font-normal flex items-center"
-        checked={role === "guest"}
-        on:click={() => {
-          handleSetRole("guest");
-        }}
-      >
-        <span>Guest</span>
-      </DropdownMenu.CheckboxItem>
+        <span class="text-xs font-medium text-slate-700">Viewer</span>
+        <span class="text-[11px] text-slate-500"
+          >{OPTION_DESCRIPTION_MAP.viewer}</span
+        >
+      </DropdownMenu.Item>
+      {#if isAdmin}
+        <DropdownMenu.Item
+          class="font-normal flex flex-col items-start hover:bg-slate-50 {role ===
+          'guest'
+            ? 'bg-slate-100'
+            : ''}"
+          on:click={() => {
+            handleSetRole("guest");
+          }}
+        >
+          <span class="text-xs font-medium text-slate-700">Guest</span>
+          <span class="text-[11px] text-slate-500"
+            >{OPTION_DESCRIPTION_MAP.guest}</span
+          >
+        </DropdownMenu.Item>
+      {/if}
     </DropdownMenu.Content>
   </DropdownMenu.Root>
 {:else}
   <div class="w-18 flex flex-row gap-1 items-center rounded-sm px-2 py-1">
-    <span>Org {role}</span>
+    <span class="capitalize">{role}</span>
   </div>
 {/if}
+
+<OrgUpgradeGuestConfirmDialog
+  bind:open={isUpgradeConfirmOpen}
+  {email}
+  {newRole}
+  onUpgrade={handleUpgrade}
+/>
diff --git a/web-admin/src/features/organizations/users/OrgUsersTableUserCompositeCell.svelte b/web-admin/src/features/organizations/users/OrgUsersTableUserCompositeCell.svelte
index d10493de329..67b7f8e25aa 100644
--- a/web-admin/src/features/organizations/users/OrgUsersTableUserCompositeCell.svelte
+++ b/web-admin/src/features/organizations/users/OrgUsersTableUserCompositeCell.svelte
@@ -6,6 +6,14 @@
   export let isCurrentUser: boolean;
   export let pendingAcceptance: boolean;
   export let photoUrl: string | null;
+  export let role: string;
 </script>
 
-<AvatarListItem {name} {email} {isCurrentUser} {pendingAcceptance} {photoUrl} />
+<AvatarListItem
+  {name}
+  {email}
+  {isCurrentUser}
+  {pendingAcceptance}
+  {photoUrl}
+  {role}
+/>
diff --git a/web-admin/src/features/projects/user-management/UserInviteForm.svelte b/web-admin/src/features/projects/user-management/UserInviteForm.svelte
index a05bab848c2..29b868c0736 100644
--- a/web-admin/src/features/projects/user-management/UserInviteForm.svelte
+++ b/web-admin/src/features/projects/user-management/UserInviteForm.svelte
@@ -1,6 +1,7 @@
 <script lang="ts">
   import {
     createAdminServiceAddProjectMemberUser,
+    getAdminServiceListOrganizationMemberUsersQueryKey,
     getAdminServiceListProjectInvitesQueryKey,
     getAdminServiceListProjectMemberUsersQueryKey,
   } from "@rilldata/web-admin/client";
@@ -85,6 +86,12 @@
           ),
         });
 
+        await queryClient.invalidateQueries({
+          queryKey:
+            getAdminServiceListOrganizationMemberUsersQueryKey(organization),
+          type: "all", // Clear regular and inactive queries
+        });
+
         eventBus.emit("notification", {
           type: "success",
           message: `Invited ${succeeded.length} ${succeeded.length === 1 ? "person" : "people"} as ${values.role}`,
diff --git a/web-admin/src/features/projects/user-management/UserRoleSelect.svelte b/web-admin/src/features/projects/user-management/UserRoleSelect.svelte
index 279b83b6da5..f4fd6062a85 100644
--- a/web-admin/src/features/projects/user-management/UserRoleSelect.svelte
+++ b/web-admin/src/features/projects/user-management/UserRoleSelect.svelte
@@ -13,9 +13,26 @@
   let open = false;
 
   const Options = [
-    { value: "admin", label: "Admin" },
-    { value: "editor", label: "Editor" },
-    { value: "viewer", label: "Viewer" },
+    {
+      value: "admin",
+      label: "Admin",
+      description: "Full access to org settings, members, and all projects",
+    },
+    {
+      value: "editor",
+      label: "Editor",
+      description: "Can create/manage projects and non-admin members",
+    },
+    {
+      value: "viewer",
+      label: "Viewer",
+      description: "Read-only access to all org projects",
+    },
+    {
+      value: "guest",
+      label: "Guest",
+      description: "Access to invited projects only",
+    },
   ];
   function onSelect(val: string) {
     value = val;
@@ -36,10 +53,18 @@
       <CaretDownIcon size="12px" />
     {/if}
   </DropdownMenuTrigger>
-  <DropdownMenuContent side="bottom" align="end">
-    {#each Options as { value, label } (value)}
-      <DropdownMenuItem on:click={() => onSelect(value)} class="text-xs">
-        {label}
+  <DropdownMenuContent side="bottom" align="end" class="w-[240px]">
+    {#each Options as { value, label, description } (value)}
+      <DropdownMenuItem
+        on:click={() => onSelect(value)}
+        class="text-xs hover:bg-slate-100 {selected?.value === value
+          ? 'bg-slate-50'
+          : ''}"
+      >
+        <div class="flex flex-col">
+          <div class="text-xs font-medium text-slate-700">{label}</div>
+          <div class="text-slate-500 text-[11px]">{description}</div>
+        </div>
       </DropdownMenuItem>
     {/each}
   </DropdownMenuContent>
diff --git a/web-admin/src/routes/[organization]/-/users/+layout.svelte b/web-admin/src/routes/[organization]/-/users/+layout.svelte
index 2a98b881127..c617747d911 100644
--- a/web-admin/src/routes/[organization]/-/users/+layout.svelte
+++ b/web-admin/src/routes/[organization]/-/users/+layout.svelte
@@ -19,7 +19,7 @@
   ];
 </script>
 
-<ContentContainer title="Users" maxWidth={1100}>
+<ContentContainer title="Manage users" maxWidth={1100}>
   <div class="container flex-col md:flex-row">
     <LeftNav {basePage} baseRoute="/[organization]/-/users" {navItems} />
     <slot />
diff --git a/web-admin/src/routes/[organization]/-/users/+page.svelte b/web-admin/src/routes/[organization]/-/users/+page.svelte
index 2a5b1d1cfc6..c0bf6aeedb8 100644
--- a/web-admin/src/routes/[organization]/-/users/+page.svelte
+++ b/web-admin/src/routes/[organization]/-/users/+page.svelte
@@ -9,6 +9,7 @@
   import AddUsersDialog from "@rilldata/web-admin/features/organizations/users/AddUsersDialog.svelte";
   import OrgUsersTable from "@rilldata/web-admin/features/organizations/users/OrgUsersTable.svelte";
   import Button from "@rilldata/web-common/components/button/Button.svelte";
+  import OrgUsersFilters from "@rilldata/web-admin/features/organizations/users/OrgUsersFilters.svelte";
   import { Search } from "@rilldata/web-common/components/search";
   import DelayedSpinner from "@rilldata/web-common/features/entity-management/DelayedSpinner.svelte";
   import { Plus } from "lucide-svelte";
@@ -20,6 +21,7 @@
   let isSuperUser = false;
   let isAddUserDialogOpen = false;
   let searchText = "";
+  let filterSelection: "all" | "members" | "guests" | "pending" = "all";
 
   $: organization = $page.params.organization;
 
@@ -80,16 +82,48 @@
     ...coerceInvitesToUsers(allOrgInvitesRows),
   ];
 
-  // Search by email or name
-  // Member users have a userName field, invites do not
-  $: filteredUsers = combinedRows.filter((user) => {
-    const searchLower = searchText.toLowerCase();
-    return (
-      (user.userEmail?.toLowerCase() || "").includes(searchLower) ||
-      ("userName" in user &&
-        (user.userName?.toLowerCase() || "").includes(searchLower))
-    );
-  });
+  $: currentUserRole = allOrgMemberUsersRows.find(
+    (member) => member.userEmail === $currentUser.data?.user.email,
+  )?.roleName;
+
+  // Filter by role
+  // Filter by search text
+  $: filteredUsers = combinedRows
+    .filter((user) => {
+      const searchLower = searchText.toLowerCase();
+      const matchesSearch =
+        (user.userEmail?.toLowerCase() || "").includes(searchLower) ||
+        ("userName" in user &&
+          (user.userName?.toLowerCase() || "").includes(searchLower));
+
+      let matchesRole = false;
+
+      if (filterSelection === "all") {
+        // All org users (members + guests)
+        matchesRole = !("invitedBy" in user);
+      } else if (filterSelection === "members") {
+        // Only members (org admin, editor, viewer)
+        matchesRole =
+          !("invitedBy" in user) &&
+          (user.roleName === "admin" ||
+            user.roleName === "editor" ||
+            user.roleName === "viewer");
+      } else if (filterSelection === "guests") {
+        // Only guests
+        matchesRole = user.roleName === "guest";
+      } else if (filterSelection === "pending") {
+        // Only users with pending invites
+        matchesRole = "invitedBy" in user;
+      }
+
+      return matchesSearch && matchesRole;
+    })
+    .sort((a, b) => {
+      // Sort by current user first
+      if (a.userEmail === $currentUser.data?.user.email) return -1;
+      if (b.userEmail === $currentUser.data?.user.email) return 1;
+      return 0;
+    });
 
   const currentUser = createAdminServiceGetCurrentUser();
 </script>
@@ -107,7 +141,7 @@
         $orgInvitesInfiniteQuery.error}
     </div>
   {:else if $orgMemberUsersInfiniteQuery.isSuccess && $orgInvitesInfiniteQuery.isSuccess}
-    <div class="flex flex-col gap-4">
+    <div class="flex flex-col">
       <div class="flex flex-row gap-x-4">
         <Search
           placeholder="Search"
@@ -116,6 +150,7 @@
           autofocus={false}
           showBorderOnFocus={false}
         />
+        <OrgUsersFilters bind:filterSelection />
         <Button
           type="primary"
           large
@@ -125,12 +160,24 @@
           <span>Add users</span>
         </Button>
       </div>
-      <OrgUsersTable
-        data={filteredUsers}
-        usersQuery={$orgMemberUsersInfiniteQuery}
-        invitesQuery={$orgInvitesInfiniteQuery}
-        currentUserEmail={$currentUser.data?.user.email}
-      />
+      <div class="mt-6">
+        <OrgUsersTable
+          data={filteredUsers}
+          usersQuery={$orgMemberUsersInfiniteQuery}
+          invitesQuery={$orgInvitesInfiniteQuery}
+          currentUserEmail={$currentUser.data?.user.email}
+          {currentUserRole}
+        />
+      </div>
+      {#if filteredUsers.length > 0}
+        <div class="px-2 py-3">
+          <span class="font-medium text-sm text-gray-500">
+            {filteredUsers.length} total user{filteredUsers.length === 1
+              ? ""
+              : "s"}
+          </span>
+        </div>
+      {/if}
     </div>
   {/if}
 </div>
diff --git a/web-common/src/components/chip/core/Chip.svelte b/web-common/src/components/chip/core/Chip.svelte
index 1748ca21375..7a29a3a6e82 100644
--- a/web-common/src/components/chip/core/Chip.svelte
+++ b/web-common/src/components/chip/core/Chip.svelte
@@ -11,7 +11,8 @@
   export let removable = false;
   export let active = false;
   export let readOnly = false;
-  export let type: "measure" | "dimension" | "time" | "special" = "dimension";
+  export let type: "measure" | "dimension" | "time" | "special" | "amber" =
+    "dimension";
   export let exclude = false;
   export let grab = false;
   export let compact = false;
@@ -168,6 +169,18 @@
     @apply border-slate-400;
   }
 
+  .amber {
+    @apply rounded-2xl h-[18px] text-xs;
+    @apply bg-amber-50 border-amber-300 text-amber-600;
+    @apply font-normal;
+  }
+
+  .amber:hover,
+  .amber:active,
+  .amber.active {
+    @apply bg-amber-100;
+  }
+
   .compact {
     @apply py-0;
   }