In principle, if SVG files are not shared between users, meaning each user can only access their own uploaded files, I do not immediately see how a malicious SVG could cause harm.

If possible, it may be best to avoid uploading SVG files at all, can all operations be performed client side instead? If the SVG files is not uploaded, I see no reason to take any measures.

However, if uploading is required / desired, and we share the same understanding of doing it right, I still recommend taking steps to minimize the possibility of an SVG causing harm. I have listed a set of recommended security measures in this answer.