There's government editions of Windows, and it's when governments have signed deals and blood pacts with Microsoft to get access to the source code of Windows, whereby the government compiles it them selves.
However, this is only for military and critical infrastructure, whereas governments also buys a shit ton of enterprise licenses in bulk that they have no control over, and no matter how you slice it, any government that uses Windows Server to serve middleware is comprised of idiots.
It's like "Daddy Usa and Daddy China, plz penetrate my moist encryption and security policies UwU"
No, seriously. If your government doesn't roll its own or has hired some local enterprise distributor, it's like saying come on in to one of the two big imperialists.
Not for military or nuclear deterrents they don't, and it's not "just" setting group policies, but actually hardening and packaging software using government standards.
But they also use Enterprise edition, which I aluded to in the comment you're replying to... geez.
Depending on products yea, but if they are using windows it's windows enterprise. I agree saying just gpo is an understatement, you can get the automated stigs from the public disa site for all the things they harden.
https://public.cyber.mil/stigs/supplemental-automation-content/