As for why, if you are logging in with a MS account, it is more secure for the MS account to use a PIN instead of the password (protection against keyloggers or physical snooping). If you are using a local account then it is a redundant step. AFAICT, they make most of their design decisions around the idea of logging in with an online account.