Nobody seems to have addressed the real issue here. While Microsoft adding support for Homer Simpson DNS resolution and serving (DoH) is all very dandy, I am quite sure that they will require that Windows Server have IIS installed to be able to handle the H part of DoH, thus hugely increasing the attack surface of the server for very little to no gain in actual security (and actually a significant decrease in security since IIS is known to be a buggy insecure turd).
This will take a lot of work to implement and is likely to be highly restrictive. For example, in the Windows domain model the default DNS lives on the Domain Controllers, why would you want your DC's to be running IIS?
It all seems rather foolish to me.