Embedded Login - what authentication API to call

Hello experts, I am looking at the embedded login option. Embedded Login. It mentions " If you decide to use Embedded Login, you must… or call the Auth0 Authentication API directly." I am not quite sure I understand what API I should call in this case. Can I call an API to validate username and password or does this only apply to passwordless?. Thanks