In a large organization (eg, a city staff), it is far from effective enough to rely on human behavior to prevent phishing attacks. While it's a bit of a hassle (usually security), I'm thinking of an approach where the email client edits all URLs in a message. Not only disable the URLs, but completely remove them. For example something like this:
Click here to see our new report on property taxes: (URL removed)
If there really is a new report and the city official really wants to see him, he can go to the website and keep track of the report. If the user calls the website through a password manager or bookmark, the fake site can not be reached instead of the actual site. (A phishing attack that involves a site that the user is unfamiliar with and therefore has no login would not be a phishing attack.)
Although not all phishing attacks contain URLs in emails, it's probably 99%.
I would be pleased to receive comments on whether you believe this will help reduce phishing attacks. I'm less interested in whether the lack of URLs is an inconvenience, as I know it.
(If you force the e-mail client to work in text mode, only the link is removed, the URL still exists.)