As I understand it, the signing requirement was really there because it dissuaded a lot of developers from simply enabling UiAccess because "it fixes this issue with Vista+" rather than properly re-assessing what they're doing and its security implications.
Remember that any UiAccess app that is running becomes a potential vector for attack by malware, so a bunch of apps with it enabled unnecessarily would reduce the effectiveness of UIPI.