The term SSO gets used for a few different authentication methods. This has caused confusion a few times in the past.
If you are using the Discourse implementation of SSO, then email verification is controlled by the require_activation SSO parameter. Set that parameter to "false" to bypass email verification.