Vulnerability in EPiServer.Forms
I found this forum thread with a similar issue: http://world.episerver.com/Forum/Developer-forum/Developer-to-developer/Thread-Container/2010/9/Allow-users-to-view-unpublished-pages-but-not-edit-or-admin-mode/ But it did not require edit mode access.
Is there any way to achieve it? According to the documentation it is not: https://webhelp.episerver.com/14-1/en/Content/EN/CMS%20Admin/Admin_AccessRightsTreeStructure.htm
Give WebEditor zero access in page tree.
Create new group like WebEditor_Sweden or similar and give that group the correct access rights in tree (view access rights in your example)
Create a new user and assign him both groups. WebEditors to get into edit mode and WebEditor_Sweden to get correct access rights in tree.
Not sure if it would work with unpublished content though.