Unattended Robot security Concern

Hope everyone is doing well.

There has been a recent security concern raised re how Unattended robots access(auto-login) production VM’s.

Could anyone shed some light re how Uipath robots auto-login to machines to execute Unattended jobs?

Once the unattended job is complete is the login session kept open?

For unattended logins do UiPath robots use agents similar to logonexpert?

For us, the main security concern is auto-login, anyone with admin access to the VM(VMWare) Console could also access(breach) network resources assigned to the logged in user.

Any help would be greatly appreciated.