I built a workaround with a bundle:
1. Lock the screen (to prevent other people than the user to work on the workstation while installing)
2. Install all the patch policies
3. Shut down the workstation
You only have to "train" users to USE this function. I named this bundle "Install updates and shutdown" (and used a red switch-off-icon) - so nobody can complain about a slow restart behavior due to running updates. I recommend to always use this bundle when finishing one's daily work.
However - who not uses the bundle is "suffering" from patch installation during work hours (no WOL possible) - so all workstations receive the needed updates.
But a notification/choice remains necessary to give the choice to the user, to deploy now or latter on.
Imagine a user needs to "quickly" reboot his machine for any reason, then pops the message "installing x of y patch do not shutdown..." ... and have to wait :-(