@gargron no it's encrypted and authenticated
it's only with clearnet through tor that the last exit node sees plaintext, as they have to send it to a normal IP address at the end
but hidden services do not get out of tor, so it's end-to-end encrypted in layers and authenticated by default, between your tor client and the hidden service node