I believe it is possible to unseal the volume and disable these protections, a quick google seems to indicate this. Apple usually does seem to provide (a maybe annoying) way to bypass these sort security measures.
I'm still on Catalina. I've read reports that on Big Sur you cannot remove the kext and re-enable CSR. Seems the only solution might be to leave csr disabled, which would be unfortunate.
