You have an Azure subscription containing an Azure Synapse Analytics workspace and a user named User1.

You must ensure User1 can create a new lake database using an Azure Synapse database template from the Gallery. The solution must adhere to the principle of least privilege.

Which role should you assign to User1?