Can someone remind me what the minimum permissions are to allow non-Org admins to be able to see Public Catalogs.

I have some ISOs shared via public catalog between two distinct orgs, and I don't want to subscribe and cause them to clone inside the same datacenter.

Just trying to sort out what's the minimum extra privileges I would have to give to an App Author to be able to see the public shared catalogs.

I know the sharing works, as the Org Admin role can see the Public Shared catalogs and insert media to a VM without error.