Hello, is not possible to include scopes for different resources in the same Azure AD access token request. You should do a request per resource. That being said, email, openid and profile are OpenID scopes which are scopes for ID tokens. You can request both an access token and ID token using the same request, this is called Hybrid flow. Set the authorization URL response_type param to id_token+token. E.g.
// Line breaks for legibility only
https://login.microsoftonline.com/{tenant}/oauth2/v2.0/authorize?
// + other params
Let us know if you need additional assistance. If the answer was helpful, please accept it so that others can find a solution.