I would accept the kind:4001 only from the original note owner, it is tricky to manage a priority queue of events in a decentralized environment, which leads to possible attacks. At least at the beginning, to see how things flow.

Or I would make it optional using a tag in the kind:1; this could be by default non permissive, with a client preference.