If a relay requires auth, then yes β it could sniff some information. As for the other points:
β The welcome event is wrapped in a NIP-17 DM, so itβs not linked to the MLS group.
β Group IDs can be rotated, even per message.
β IPs can be hidden by using the Tor network.
Also, some information can be obtained from the req, but auth is required to identify the sender.